Q1 · hard · AI-verified
In a bank's Disaster Recovery Plan (DRP), the term 'Recovery Point Objective (RPO)' refers to:
- The geographic distance between the primary data center and the disaster recovery site
- The maximum time within which the bank's systems must be fully restored after a disaster
- The maximum acceptable amount of data loss measured in time — i.e., how old the data can be when recovered after a disaster
- The minimum bandwidth required to restore data from a remote backup server after an outage
Q2 · hard · AI-verified
In public key infrastructure (PKI) used by banks, a Digital Certificate is issued by which authority to verify the identity of an entity?
- Network Address Translation (NAT) Server
- Domain Name System (DNS) Server
- Certificate Authority (CA)
- Internet Service Provider (ISP)
Q3 · hard · AI-verified
In computer security, the principle that 'users should be given only the minimum levels of access — or permissions — needed to perform their job functions' is called:
- Role-Based Access Control (RBAC)
- Principle of Least Privilege (PoLP)
- Principle of Separation of Duties
- Defence in Depth
Q4 · hard · AI-verified
A rural bank's CBS (Core Banking Solution) system detects that an attacker is sending a flood of SYN packets without completing the TCP handshake, exhausting server resources. Which type of attack is this?
- Ping of Death Attack
- Smurf Attack
- SYN Flood Attack
- Teardrop Attack
Q5 · hard · AI-verified
A phishing email sent to employees of a Regional Rural Bank specifically targets a senior manager by using personalized information about her role and colleagues. What specific type of phishing attack is this?
- Smishing
- Vishing
- Whaling
- Spear Phishing