CompTIA Security+ Practice Test of the Day 260607

By /

Welcome to today’s CompTIA Security+ practice test!

This practice test uses our new UI!

Today’s practice test is based on Subdomain 2.4 (Given a scenario, analyze indicators of malicious activity) from the CompTIA Security+ SY0-701 objectives.

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, nor are they brain dumps, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To choose CompTIA Security+ practice tests based on specific domains/subdomains, click that link.

Recommended read: Ultimate CompTIA Security+ Study Guide (2026)

CompTIA Security+ Practice Test of the Day 260607
10 questions • Single best answer
Question 1
An analyst in a SOC observes a user account authenticating from New York and then from Singapore just fifteen minutes later. No VPN or actual travel could explain the geographic jump. Which indicator of malicious activity does this represent?
    Question 2
    An attacker tries a single common password against hundreds of different user accounts to avoid triggering lockouts. The approach stays under each account's failure threshold. Which password attack is being used?
      Question 3
      A login service logs thousands of rapid, sequential password guesses against one administrator account in under a minute. The attacker tries every possible combination. Which password attack does this indicate?
        Question 4
        During a wireless session, an attacker secretly positions themselves between a client and server, relaying and altering traffic without either party's knowledge. Both endpoints believe they talk directly. Which network attack is this?
          Question 5
          A retailer's website becomes unreachable as a botnet floods it with massive traffic from thousands of compromised hosts. Legitimate customers cannot load any pages. Which network attack does this describe?
            Question 6
            After gaining access to a low-level user account, an attacker exploits a flaw to obtain administrative rights on the system. The attacker now controls functions the original account could not. Which activity does this represent?
              Question 7
              An attacker manipulates a web request with sequences like ../ to reach files outside the web root, retrieving system configuration files. The application fails to restrict path input. Which application attack is this?
                Question 8
                A SOC dashboard shows numerous user accounts suddenly disabled after repeated failed sign-in attempts within a short window. The pattern suggests an automated credential attack in progress. Which indicator is most directly observed?
                  Question 9
                  A disgruntled developer plants code that lies dormant until a specific date, when it deletes critical files. The hidden code triggers only when its condition is met. Which malware type does this describe?
                    Question 10
                    An organization's files are suddenly encrypted and a message demands payment in cryptocurrency to restore access. Operations halt until a decryption key is provided. Which malware attack does this indicate?
                      Answered: 0/10
                      Cybersecurity Acronyms Desk Mat

                      Tired of Googling acronyms while practicing/studying?
                      Keep them all under your keyboard.

                      📋 GET_THE_DESK_MAT

                      Take more CompTIA Security+ practice tests

                      Related Posts

                      Leave a Comment

                      Your email address will not be published. Required fields are marked *

                      Scroll to Top