CompTIA Security+ Practice Test of the Day 260429

Welcome to today’s CompTIA Security+ practice test!

This practice test uses our new UI!

Today’s practice test is based on Subdomain 2.1 (Compare and contrast common threat actors and motivations) from the CompTIA Security+ SY0-701 objectives.

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, nor are they brain dumps, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To choose CompTIA Security+ practice tests based on specific domains/subdomains, click that link.

CompTIA Security+ Practice Test of the Day 260429

10 questions • Single best answer

Question 1

An intelligence analyst reviewing a threat report finds that an intrusion campaign used custom zero-day exploits, maintained persistent access for 18 months undetected, and systematically collected military technology blueprints from defense contractors. Which threat actor type BEST fits this profile?

A. Organized crime B. Hacktivist C. Nation-state D. Unskilled attacker

Question 2

A threat analyst reviews logs showing automated scanning attempts against public-facing web servers using widely available exploit toolkits. The attacker shows no evidence of custom tooling or adaptive behavior — only running pre-built scripts from hacking forums. Which threat actor type does this BEST describe?

A. Hacktivist B. Nation-state C. Insider threat D. Unskilled attacker

Question 3

A group defaces a petroleum company's website, leaks internal documents, and launches a DDoS attack — publishing a manifesto claiming the company's environmental record makes it a legitimate target. Which threat actor type BEST describes these attackers?

A. Organized crime B. Hacktivist C. Nation-state D. Shadow IT

Question 4

A disgruntled employee with privileged access to the source code repository begins copying proprietary code to a personal cloud storage account after submitting a resignation letter. Which threat actor type does this represent?

A. Shadow IT B. Nation-state C. Insider threat D. Organized crime

Question 5

A cybercriminal syndicate deploys ransomware against a hospital, encrypts patient records, and demands a $2 million Bitcoin payment — operating through an established criminal infrastructure with technical specialists, money launderers, and negotiators. Which threat actor type does this represent?

A. Hacktivist B. Nation-state C. Unskilled attacker D. Organized crime

Question 6

Employees at a marketing department begin using an unapproved cloud file-sharing service to collaborate on materials — bypassing IT procurement because the approved tool is too slow. The security team is unaware these accounts exist. Which threat category does this represent?

A. Insider threat B. Shadow IT C. Organized crime D. Unskilled attacker

Question 7

A sophisticated threat actor compromises a defense contractor's network and spends months quietly collecting military technology blueprints, R&D reports, and classified communications — extracting them slowly to avoid detection. Which attacker motivation BEST describes this campaign?

A. Financial gain B. Service disruption C. Revenge D. Espionage

Question 8

A cybercriminal group compromises an e-commerce platform, harvests 2 million credit card numbers, and sells them on dark web marketplaces. Which attacker motivation BEST describes this activity?

A. Espionage B. Philosophical/political beliefs C. Financial gain D. Disruption/chaos

Question 9

A threat intelligence report describes an attacker group with a large budget, dedicated technical staff, the capability to develop custom zero-day exploits, and the capacity to sustain long-term campaigns against high-value targets. Which actor attribute does this profile describe?

A. Ethical motivation B. External/internal classification C. High resources and sophistication D. Unskilled capability level

Question 10

A hacktivist collective launches coordinated DDoS attacks against a government agency's public websites to protest a controversial policy — intending to prevent citizens from accessing government services. Which attacker motivation BEST describes this campaign?

A. Financial gain B. Espionage C. Service disruption D. Data exfiltration

Tired of Googling acronyms while practicing/studying?
Keep them all under your keyboard.

📋 GET_THE_DESK_MAT

Take more CompTIA Security+ practice tests

CompTIA Security+ Practice Test of the Day 260429

Related Posts

Leave a Comment Cancel Reply