EC-COUNCIL EC-COUNCIL Certifications 312-50V12 Questions & Answers

• Question 461:

  How can you determine if an LM hash you extracted contains a password that is less than 8 characters long?

  A. There is no way to tell because a hash cannot be reversed

  B. The right most portion of the hash is always the same

  C. The hash always starts with AB923D

  D. The left most portion of the hash is always the same

  E. A portion of the hash will be all 0's

  Correct Answer: B

• Question 462:

  Which of the following tools can be used to perform a zone transfer?

  A. NSLookup

  B. Finger

  C. Dig

  D. Sam Spade

  E. Host

  F. Netcat

  G. Neotrace

  Correct Answer: ACDE

• Question 463:

  Which of the following Bluetooth hacking techniques refers to the theft of information from a wireless device through Bluetooth?

  A. Bluesmacking

  B. Bluebugging

  C. Bluejacking

  D. Bluesnarfing

  Correct Answer: D

  Bluesnarfing is the unauthorized access of information from a wireless device through a Bluetooth connection, often between phones, desktops, laptops, and PDAs (personal digital assistant).

• Question 464:

  Every company needs a formal written document which spells out to employees precisely what they are allowed to use the company's systems for, what is prohibited, and what will happen to them if they break the rules. Two printed copies of

  the policy should be given to every employee as soon as possible after they join the organization. The employee should be asked to sign one copy, which should be safely filed by the company. No one should be allowed to use the company's

  computer systems until they have signed the policy in acceptance of its terms.

  What is this document called?

  A. Information Audit Policy (IAP)

  B. Information Security Policy (ISP)

  C. Penetration Testing Policy (PTP)

  D. Company Compliance Policy (CCP)

  Correct Answer: B

• Question 465:

  An attacker is trying to redirect the traffic of a small office. That office is using their own mail server, DNS server and NTP server because of the importance of their job. The attacker gain access to the DNS server and redirect the direction www.google.com to his own IP address. Now when the employees of the office want to go to Google they are being redirected to the attacker machine. What is the name of this kind of attack?

  A. MAC Flooding

  B. Smurf Attack

  C. DNS spoofing

  D. ARP Poisoning

  Correct Answer: C

• Question 466:

  Which Nmap switch helps evade IDS or firewalls?

  A. -n/-R

  B. -0N/-0X/-0G

  C. -T

  D. -D

  Correct Answer: C

• Question 467:

  Bob was recently hired by a medical company after it experienced a major cyber security breach. Many patients are complaining that their personal medical records are fully exposed on the Internet and someone can find them with a simple Google search. Bob's boss is very worried because of regulations that protect those data. Which of the following regulations is mostly violated?

  A. HIPPA/PHl

  B. Pll

  C. PCIDSS

  D. ISO 2002

  Correct Answer: A

  PHI stands for Protected Health info. The HIPAA Privacy Rule provides federal protections for private health info held by lined entities and provides patients an array of rights with regard to that info. under HIPAA phi is considered to be any identifiable health info that's used, maintained, stored, or transmitted by a HIPAA-covered entity ?a healthcare provider, health plan or health insurer, or a aid clearinghouse ?or a business associate of a HIPAA-covered entity, in relation to the availability of aid or payment for aid services. It is not only past and current medical info that's considered letter under HIPAA Rules, however also future info concerning medical conditions or physical and mental health related to the provision of care or payment for care. phi is health info in any kind, together with physical records, electronic records, or spoken info. Therefore, letter includes health records, medical histories, lab check results, and medical bills. basically, all health info is considered letter once it includes individual identifiers. Demographic info is additionally thought of phi underneath HIPAA Rules, as square measure several common identifiers like patient names, Social Security numbers, Driver's license numbers, insurance details, and birth dates, once they square measure connected with health info. The eighteen identifiers that create health info letter are: Names Dates, except year phonephone numbers Geographic information FAX numbers Social Security numbers Email addresses case history numbers Account numbers Health arrange beneficiary numbers Certificate/license numbers Vehicle identifiers and serial numbers together with license plates Web URLs Device identifiers and serial numbers net protocol addresses Full face photos and comparable pictures Biometric identifiers (i.e. retinal scan, fingerprints) Any distinctive identifying variety or code One or a lot of of those identifiers turns health info into letter, and phi HIPAA Privacy Rule restrictions can then apply that limit uses and disclosures of the data. HIPAA lined entities and their business associates will ought to guarantee applicable technical, physical, and body safeguards are enforced to make sure the confidentiality, integrity, and availability of phi as stipulated within the HIPAA Security Rule.

• Question 468:

  Which method of password cracking takes the most time and effort?

  A. Dictionary attack

  B. Shoulder surfing

  C. Rainbow tables

  D. Brute force

  Correct Answer: D

  Brute-force attack when an attacker uses a set of predefined values to attack a target and analyze the response until he succeeds. Success depends on the set of predefined values. It will take more time if it is larger, but there is a better probability of success. In a traditional brute-force attack, the passcode or password is incrementally increased by one letter/number each time until the right passcode/password is found.

• Question 469:

  Jake, a professional hacker, installed spyware on a target iPhone to spy on the target user's activities. He can take complete control of the target mobile device by jailbreaking the device remotely and record audio, capture screenshots, and monitor all phone calls and SMS messages. What is the type of spyware that Jake used to infect the target device?

  A. DroidSheep

  B. Androrat

  C. Zscaler

  D. Trident

  Correct Answer: B

• Question 470:

  Johnson, an attacker, performed online research for the contact details of reputed cybersecurity firms. He found the contact number of sibertech.org and dialed the number, claiming himself to represent a technical support team from a

  vendor. He warned that a specific server is about to be compromised and requested sibertech.org to follow the provided instructions. Consequently, he prompted the victim to execute unusual commands and install malicious files, which were

  then used to collect and pass critical Information to Johnson's machine.

  What is the social engineering technique Steve employed in the above scenario?

  A. Quid pro quo

  B. Diversion theft

  C. Elicitation

  D. Phishing

  Correct Answer: A

  https://www.eccouncil.org/what-is-social-engineering/ This Social Engineering scam involves an exchange of information that can benefit both the victim and the trickster. Scammers would make the prey believe that a fair exchange will be present between both sides, but in reality, only the fraudster stands to benefit, leaving the victim hanging on to nothing. An example of a Quid Pro Quo is a scammer pretending to be an IT support technician. The con artist asks for the login credentials of the company's computer saying that the company is going to receive technical support in return. Once the victim has provided the credentials, the scammer now has control over the company's computer and may possibly load malware or steal personal information that can be a motive to commit identity theft.

  "A quid pro quo attack (aka something for something" attack) is a variant of baiting. Instead of baiting a target with the promise of a good, a quid pro quo attack promises a service or a benefit based on the execution of a specific action." https://resources.infosecinstitute.com/topic/common-social-engineering- attacks/#:~:text=A%20quid%20pro%20quo%20attack,execution%20of%20a%20specific%2 0action.