CC Exam Dumps - CC - Certified in Cybersecurity

Disaster Recovery Planning focuses on restoringIT systems, infrastructure, and communicationsafter a disruption. Business Continuity Planning focuses onmaintaining critical business functionsduring and after incidents, often using alternative processes.

BCP is broader than DRP and includes people, processes, facilities, and third parties, while DRP is IT-centric. Both plans complement each other but serve different purposes.

Ethernet (IEEE 802.3) defines wired LAN communication standards.

In Software as a Service (SaaS), the provider manages nearly all infrastructure, platforms, and applications, leaving customers responsible mainly for data and access.

Phishing uses deceptive messages—often emails or websites—to trick users into revealing sensitive information. Spoofing is often used as a technique within phishing attacks.

Access control ensures that only authorized users can access specific resources. It includes authentication, authorization, and enforcement mechanisms.

Encryption protects data confidentiality, firewalls control network traffic, and antivirus detects malware. Only access control directly governs who can access sensitive information.

Digital signatures provide authentication, integrity, and non-repudiation. They confirm who sent a message and ensure it was not altered.

ARP poisoning manipulates ARP tables to intercept or redirect LAN traffic, often enabling man-in-the-middle attacks.

Microsegmentationdivides networks into granular zones protected by internal firewalls or policy enforcement points. It limits lateral movement and is a core Zero Trust principle.