CompTIA Security+ Practice Test of the Day 260605

By /

Welcome to today’s CompTIA Security+ practice test!

This practice test uses our new UI!

Today’s practice test is based on Subdomain 2.2 (Explain common threat vectors and attack surfaces) from the CompTIA Security+ SY0-701 objectives.

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, nor are they brain dumps, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To choose CompTIA Security+ practice tests based on specific domains/subdomains, click that link.

Recommended read: Ultimate CompTIA Security+ Study Guide (2026)

CompTIA Security+ Practice Test of the Day 260605
10 questions • Single best answer
Question 1
A financial services company's employees report text messages claiming to be from the IT helpdesk, asking them to click a link and re-enter their network credentials. The messages arrive via SMS and spoof an internal number. Which threat vector is being exploited?
    Question 2
    An attacker calls an organization's billing department posing as a senior vendor representative and pressures staff to disclose account login details over the phone. No email or message is involved. Which technique describes this voice-based attack?
      Question 3
      A penetration tester compromises a popular industry news website frequently visited by a target firm's engineers and plants malware that infects visitors. The attacker simply waits for employees to browse normally. Which attack best describes this approach?
        Question 4
        Users intending to reach a company's payroll portal accidentally type a slightly misspelled domain and land on a malicious clone harvesting credentials. The fraudulent page relies on common keyboard errors. Which technique is being used?
          Question 5
          An accountant receives an email appearing to come from the CFO urgently requesting a wire transfer to a new vendor account. The message uses a spoofed display name and mimics the executive's tone. Which attack does this describe?
            Question 6
            A security audit finds several newly deployed network switches still accessible using the manufacturer's factory username and password. Attackers could log in with no exploitation required. Which attack surface does this represent?
              Question 7
              A vulnerability scan reveals a public-facing server listening on numerous unnecessary network services, several tied to legacy functions. Each exposed listener gives an attacker more to probe. Which weakness does this finding describe?
                Question 8
                A managed service provider with privileged remote access to many clients is breached, letting attackers pivot into downstream customer networks. The trust relationship becomes the entry point. Which threat vector is illustrated?
                  Question 9
                  An employee finds an unlabeled USB drive in the parking lot and plugs it into a workstation, unknowingly executing malware. The device bypasses perimeter network defenses entirely. Which threat vector was used?
                    Question 10
                    A user opens a PDF attachment that appears to be an invoice but contains embedded malicious code that runs on launch. The document itself is the delivery mechanism. Which threat vector does this represent?
                      Answered: 0/10
                      Cybersecurity Acronyms Desk Mat

                      Tired of Googling acronyms while practicing/studying?
                      Keep them all under your keyboard.

                      📋 GET_THE_DESK_MAT

                      Take more CompTIA Security+ practice tests

                      Related Posts

                      Leave a Comment

                      Your email address will not be published. Required fields are marked *

                      Scroll to Top