New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca Cybersecurity-Audit-Certificate Exam - Topic 1 Question 20 Discussion

Actual exam question for Isaca's Cybersecurity-Audit-Certificate exam
Question #: 20
Topic #: 1
[All Cybersecurity-Audit-Certificate Questions]

Which of the following injects malicious scripts into a trusted website to infect a target?

Show Suggested Answer Hide Answer
Suggested Answer: A

In the context of network communications, the two types of attack vectors are ingress and egress. Ingress refers to the unauthorized entry or access to a network, which can include various forms of cyberattacks aimed at penetrating network defenses.Egress, on the other hand, involves the unauthorized transmission of data out of a network, often as part of data exfiltration efforts by attackers1.


by Pearlene at Jul 04, 2024, 04:36 PM

Limited Time Offer

25%

Off

Get Premium Cybersecurity-Audit-Certificate Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Suzan
3 months ago
B is right, but I’m still learning about all these attacks.
upvoted 0 times
...
Giuseppe
3 months ago
Surprised to see D listed here, that’s not it at all!
upvoted 0 times
...
Felton
3 months ago
No way, it’s not C. That’s a different type of attack.
upvoted 0 times
...
Willis
4 months ago
I thought it was A, but B makes more sense.
upvoted 0 times
...
Roslyn
4 months ago
Definitely B, cross-site scripting is the one!
upvoted 0 times
...
An
4 months ago
I thought denial-of-service attacks were more about overwhelming a site rather than injecting scripts. So, I’m not sure if that’s the right choice.
upvoted 0 times
...
Twila
4 months ago
I’m leaning towards B as well, but I keep mixing it up with SQL injection. They both seem related to web vulnerabilities.
upvoted 0 times
...
Denna
4 months ago
I remember discussing malicious code in class, but it feels like that could apply to multiple options here.
upvoted 0 times
...
Sunshine
5 months ago
I think the answer might be B, Cross-site scripting, but I'm not entirely sure. It sounds familiar from our last practice session.
upvoted 0 times
...
Nohemi
5 months ago
I'm pretty confident that cross-site scripting is the correct answer. It's a common web application vulnerability that allows attackers to inject malicious scripts into a trusted website, which can then be executed by the victim's browser.
upvoted 0 times
...
Veronica
5 months ago
Denial-of-service and SQL injection attacks are different types of attacks, so those aren't the right answers here. I think the key is that the question is specifically asking about injecting malicious scripts, so cross-site scripting is the way to go.
upvoted 0 times
...
Tanesha
5 months ago
Okay, I've got this. Cross-site scripting is the technique where attackers inject malicious scripts into a trusted website, which can then be executed by the victim's browser. That's the answer I'm going with.
upvoted 0 times
...
Noe
5 months ago
Hmm, I'm a bit confused. I know malicious code can be used to attack websites, but I'm not sure if that's the same as injecting scripts. I'll have to think this through more carefully.
upvoted 0 times
...
Alaine
5 months ago
I'm pretty sure this is a cross-site scripting (XSS) attack, where malicious scripts are injected into a trusted website to infect the target.
upvoted 0 times
...
Celestine
5 months ago
This seems like a tricky one. I'll need to carefully consider each option and think through the different scenarios that could lead to the individual file and folder content being unavailable.
upvoted 0 times
...
Lucina
5 months ago
This one seems pretty straightforward. I think DMVPN is the way to go since it supports multicast and can be encrypted with IPsec.
upvoted 0 times
...
Reid
5 months ago
Hmm, I'm a bit confused on the soft dollar concept here. I'll need to review the details of the case and the soft dollar standards more closely to make sure I understand the issue.
upvoted 0 times
...
Ma
5 months ago
I'm a bit unsure about this one. I'll need to review the differences between login, refresh, and logout to determine the right approach here.
upvoted 0 times
...
Alaine
9 months ago
Gotta be B. Cross-site scripting. I mean, who doesn't love a good old-fashioned script injection, am I right? It's like the spice of life for web security enthusiasts.
upvoted 0 times
Myong
8 months ago
Yep, B is the answer. Cross-site scripting can be dangerous if not properly protected against.
upvoted 0 times
...
Tyisha
8 months ago
I agree, B is the correct answer. Cross-site scripting is a common method used by attackers.
upvoted 0 times
...
Arlean
8 months ago
Definitely B. Cross-site scripting is the way to go for injecting those scripts.
upvoted 0 times
...
Tracey
8 months ago
D) Structure query language attack
upvoted 0 times
...
Shawana
8 months ago
C) Denial-of-service attack
upvoted 0 times
...
Billye
8 months ago
B) Cross-site scripting
upvoted 0 times
...
Malcolm
9 months ago
A) Malicious code
upvoted 0 times
...
...
Otis
10 months ago
Definitely B. Cross-site scripting. It's the classic way to inject those nasty scripts and infect a website. A real classic in the hacker's playbook.
upvoted 0 times
Shaun
9 months ago
It's important to be aware of these types of attacks to protect websites from being compromised.
upvoted 0 times
...
Leota
9 months ago
I agree, cross-site scripting is a common method used by hackers.
upvoted 0 times
...
...
Nell
10 months ago
I'm not sure, but I think A) Malicious code could also be a possibility.
upvoted 0 times
...
Suzi
10 months ago
I agree with Esteban, because cross-site scripting is specifically designed to inject malicious scripts into trusted websites.
upvoted 0 times
...
Kirby
11 months ago
Hmm, I'm gonna go with B. Cross-site scripting. It's like the ninja of web attacks - slipping in those malicious scripts without anyone even knowing!
upvoted 0 times
...
Esteban
11 months ago
I think the answer is B) Cross-site scripting.
upvoted 0 times
...
Cordelia
11 months ago
Oooh, cross-site scripting? That's like a sneaky way to get your hands on someone else's website, isn't it? Sounds like a super fun (and totally legal) hack to try out!
upvoted 0 times
Doug
9 months ago
It's important to always protect websites from vulnerabilities like that.
upvoted 0 times
...
Rebeca
9 months ago
I heard it can lead to stealing sensitive information from users.
upvoted 0 times
...
Portia
9 months ago
It's not legal though, it's considered a cyber attack.
upvoted 0 times
...
Elke
10 months ago
Yeah, cross-site scripting is definitely a sneaky way to compromise a website.
upvoted 0 times
...
...

Save Cancel