Q1. Which wireless encryption standard is the most secure?
- A.WEP
- B.WPA
- C.WPA2
- D.WPA3β Correct
Explanation: WPA3 is currently the most secure Wi-Fi encryption standard. (Relevant for 1101 networking - wireless security) Learn more.
CompTIA A+ Core 2 Practice Questions: Security
19 free, exam-style CompTIA A+ Core 2 (220-1102) practice questions covering Security. Each question shows the correct answer and a clear explanation. Ready for the real thing? Take the full timed quiz below.
Q2. Which full-disk encryption solution is native to macOS?
- A.FileVault 2β Correct
- B.BitLocker
- C.LUKS
- D.TrueCrypt
Explanation: FileVault 2 provides XTS-AES-128 full-disk encryption on Mac systems. Learn more.
Q3. You need to securely wipe all data from an old HDD before disposal. Which method meets DoD 5220.22-M standard?
- A.Single overwrite with zeroes
- B.Three-pass overwrite (zeroes, ones, random)β Correct
- C.Quick format
- D.Full format
Explanation: The DoD standard calls for multiple passes: overwrite with zeroes, then ones, then random data to prevent data recovery. Learn more.
Q4. Which wireless security protocol uses 128-bit keys and a pre-shared key, but is considered insecure due to short IV?
- A.WEPβ Correct
- B.WPA2-AES
- C.WPA2-TKIP
- D.WPA3-SAE
Explanation: WEP uses a 24-bit IV with RC4, making it easily cracked. WPA2-TKIP and WPA2-AES are stronger; WPA3 uses SAE. Learn more.
Q5. In a SOHO router, which feature lets you limit inbound connections to only specified private IPs and ports?
- A.Port forwarding
- B.NAT filtering
- C.MAC filtering
- D.Access Control List (ACL)β Correct
Explanation: An ACL can explicitly permit or deny inbound/outbound traffic by IP, port, or protocol. Learn more.
Q6. Which Windows feature blocks unsigned or malicious applications from running based on publisher rules?
- A.AppLockerβ Correct
- B.SmartScreen
- C.User Account Control
- D.Windows Defender Firewall
Explanation: AppLocker defines policies to allow or deny applications by publisher, path, or hash. Learn more.
Q7. When installing a browser extension, which built-in browser feature can warn you about malicious or tracker-heavy add-ons?
- A.InPrivate/Incognito mode
- B.Browser sandboxing
- C.Extension permission promptsβ Correct
- D.Pop-up blocker
Explanation: Modern browsers prompt you about an extensionβs requested permissions (e.g. read all data), helping you detect potentially malicious add-ons. Learn more.
Q8. What is the primary purpose of a TPM (Trusted Platform Module) chip in modern PCs?
- A.Accelerate graphics
- B.Store encryption keys securelyβ Correct
- C.Manage fan speeds
- D.Host virtual machines
Explanation: TPM provides hardwareβbased secure storage for encryption keys, credentials, and platform integrity measurements. Learn more.
Q9. In Windows Defender Firewall, which profile applies when a device is connected to a public Wi-Fi hotspot?
- A.Domain Profile
- B.Private Profile
- C.Public Profileβ Correct
- D.Guest Profile
Explanation: The Public Profile is used for network connections in untrusted locations like coffee shops to impose stricter firewall rules. Learn more.
Q10. A user should only have the permissions needed for daily work. Which security principle is being applied?
- A.Least privilegeβ Correct
- B.Open trust
- C.Implicit deny bypass
- D.Credential sharing
Explanation: Least privilege limits accounts to the minimum permissions required to perform assigned tasks. Learn more.
Q11. Which Windows feature encrypts an entire volume to protect data if a laptop is lost?
- A.BitLockerβ Correct
- B.Task Scheduler
- C.Device Manager
- D.Disk Cleanup
Explanation: BitLocker provides full-volume encryption for Windows systems. Learn more.
Q12. Which sign is most associated with a phishing attempt?
- A.A message pressures the user to click a link and verify credentialsβ Correct
- B.A monitor requests a higher refresh rate
- C.A printer reports low paper
- D.A keyboard uses a USB receiver
Explanation: Phishing commonly uses urgency and credential-harvesting links to trick users into revealing sensitive information. Learn more.
Q13. After malware is found on a workstation, what should be done before reconnecting it to the network?
- A.Verify removal and apply updates or patchesβ Correct
- B.Disable all logs
- C.Share the administrator password
- D.Delete the ticket
Explanation: The system should be cleaned, updated, and verified before returning it to the network to reduce reinfection risk. Learn more.
Q14. Which mobile security action should be taken before repurposing a company phone?
- A.Back up required data and perform a factory reset or enterprise wipeβ Correct
- B.Disable all screen locks
- C.Leave personal accounts signed in
- D.Remove only the wallpaper
Explanation: A managed wipe or factory reset protects company and personal data before reassignment. Learn more.
Q15. A user receives browser pop-ups after installing a free toolbar. Which malware type is most likely?
- A.Adwareβ Correct
- B.Rootkit only
- C.Worm only
- D.Boot sector virus only
Explanation: Adware commonly displays unwanted advertisements or browser pop-ups, often bundled with other software. Learn more.
Q16. Which mobile security feature requires a user PIN before the device can decrypt stored data?
- A.Device encryption tied to screen lockβ Correct
- B.SSID broadcast
- C.USB tethering
- D.AirDrop discovery only
Explanation: Mobile device encryption is commonly protected by the device passcode or biometric unlock process. Learn more.
Q17. Which action is part of proper malware remediation after removing malicious files?
- A.Enable protection and update signaturesβ Correct
- B.Disable firewall permanently
- C.Share the infected USB drive
- D.Ignore user education
Explanation: After removal, defenses should be updated and enabled to reduce the chance of reinfection. Learn more.
Q18. Which Windows feature stores saved passwords and certificates for users?
- A.Credential Managerβ Correct
- B.Task Scheduler
- C.Disk Management
- D.Resource Monitor
Explanation: Credential Manager stores saved credentials used by Windows and applications. Learn more.
Q19. Which attack uses a fraudulent phone call to obtain credentials?
- A.Vishingβ Correct
- B.Smishing only
- C.Bluejacking
- D.Dumpster diving
Explanation: Vishing is voice phishing, where attackers use phone calls to trick users into disclosing sensitive information. Learn more.