CISA—Certified Information Systems Auditor - Part 122

1. Right Answer: C
Explanation: Override feature of PBS provides for the possibility to break into a busy line to inform another user an important message.For CISA exam you should know below mentioned PBS features and RisksSystem Features -Description -Risk -Automatic Call distribution -Allows a PBX to be configured so that incoming calls are distributed to the next available agent or placed on-hold until one become availableTapping and control of traffic -Call forwarding -Allow specifying an alternate number to which calls will be forwarded based on certain conditionUser tracking -Account codes -Used to:Track calls made by certain people or for certain projects for appropriate billingDial-In system access (user dials from outside and gain access to normal feature of the PBX)Changing the user class of service so a user can access a different set of features (i.e. the override feature)Fraud, user tracking, non authorized featuresAccess Codes -Key for access to specific feature from the part of users with simple instruments, i.e. traditional analog phones.Non-authorized features -Silent Monitoring -Silently monitors other calls -Eavesdropping -Conferencing -Allows for conversation among several usersEavesdropping, by adding unwanted/unknown parties to a conference override(intrude)Provides for the possibility to break into a busy line to inform another user an important messageEavesdropping -Auto-answer -Allows an instrument to automatically go when called usually gives an auditor or visible warning which can easily turned offGaining information not normally available, for various purposeTenanting -Limits system user access to only those users who belong to the same tenant group '' useful when one company leases out part of its building to other companies and tenants share an attendant, trunk lines,etcIllegal usage, fraud, eavesdroppingVoice mail -Stores messages centrally and '' by using a password '' allows for retrieval from inside or outside lines.Disclosure or destruction of all messages of a user when that user's password in known or discovered by an intruder, disabling of the voice mail system and even the entire switch by lengthy messages or embedded codes, illegal access to external lines.Privacy release -Supports shared extensions among several devices, ensuring that only one device at a time can use an extension. Privacy release disables the security by allowing devices to connect to an extension already in use.Eavesdropping -No busy extension -Allows calls to an in-use extension to be added to a conference when that extension is on conference and already off-hookEavesdropping a conference in progressDiagnostics -Allows for bypassing normal call restriction procedures. This kind of diagnostic is sometimes available from any connected device. It is a separate feature, in addition to the normal maintenance terminal or attendant diagnosticsFraud and illegal usage -Camp-on or call waiting -When activated, sends a visual audible warning to an off-hook instrument that is receiving another call. Another option of this feature is to conference with the camped-on or call waitingMaking the called individual a party to a conference without knowing it.Dedicated connections -Connections made through the PBX without using the normal dialing sequences. It can be used to create hot-lines between devices i.e. one rings when the other goes off-hook. It is also used for data connections between devices and the central processing facilityEavesdropping on a line -The following were incorrect answers:Account Codes - that are used to:Track calls made by certain people or for certain projects for appropriate billingDial-In system access (user dials from outside and gain access to normal feature of the PBX)Changing the user class of service so a user can access a different set of features (i.e. the override feature)Access Codes - Key for access to specific feature from the part of users with simple instruments, i.e. traditional analog phones.Tenanting - Limits system user access to only those users who belong to the same tenant group useful when one company leases out part of its building to other companies and tenants share an attendant, trunk lines,etcThe following reference(s) were/was used to create this question:CISA review manual 2014 Page number 358

2. Right Answer: A
Explanation: Automatic Call distribution allows a PBX to be configured so that incoming calls are distributed to the next available agent or placed on-hold until one become availableFor your exam you should know below mentioned PBX features and Risks:System Features -Description -Risk -Automatic Call distribution -Allows a PBX to be configured so that incoming calls are distributed to the next available agent or placed on-hold until one become availableTapping and control of traffic -Call forwarding -Allow specifying an alternate number to which calls will be forwarded based on certain conditionUser tracking -Account codes -Used to:Track calls made by certain people or for certain projects for appropriate billingDial-In system access (user dials from outside and gain access to normal feature of the PBX)Changing the user class of service so a user can access a different set of features (i.e. the override feature)Fraud, user tracking, non authorized featuresAccess Codes -Key for access to specific feature from the part of users with simple instruments, i.e. traditional analog phones.Non-authorized features -Silent Monitoring -Silently monitors other calls -Eavesdropping -Conferencing -Allows for conversation among several usersEavesdropping, by adding unwanted/unknown parties to a conference override(intrude)Provides for the possibility to break into a busy line to inform another user an important messageEavesdropping -Auto-answer -Allows an instrument to automatically go when called usually gives an auditor or visible warning which can easily turned offGaining information not normally available, for various purposeTenanting -Limits system user access to only those users who belong to the same tenant group '' useful when one company leases out part of its building to other companies and tenants share an attendant, trunk lines,etcIllegal usage, fraud, eavesdroppingVoice mail -Stores messages centrally and '' by using a password '' allows for retrieval from inside or outside lines.Disclosure or destruction of all messages of a user when that user's password in known or discovered by an intruder, disabling of the voice mail system and even the entire switch by lengthy messages or embedded codes, illegal access to external lines.Privacy release -Supports shared extensions among several devices, ensuring that only one device at a time can use an extension. Privacy release disables the security by allowing devices to connect to an extension already in use.Eavesdropping -No busy extension -Allows calls to an in-use extension to be added to a conference when that extension is on conference and already off-hookEavesdropping a conference in progressDiagnostics -Allows for bypassing normal call restriction procedures. This kind of diagnostic is sometimes available from any connected device. It is a separate feature, in addition to the normal maintenance terminal or attendant diagnosticsFraud and illegal usage -Camp-on or call waiting -When activated, sends a visual audible warning to an off-hook instrument that is receiving another call. Another option of this feature is to conference with the camped-on or call waitingMaking the called individual a party to a conference without knowing it.Dedicated connections -Connections made through the PBX without using the normal dialing sequences. It can be used to create hot-lines between devices i.e. one rings when the other goes off-hook. It is also used for data connections between devices and the central processing facilityEavesdropping on a line -The following were incorrect answers:Call forwarding - Allow specifying an alternate number to which calls will be forwarded based on certain conditionTenanting - Limits system user access to only those users who belong to the same tenant group useful when one company leases out part of its building to other companies and tenants share an attendant, trunk lines,etcVoice Mail - Stores messages centrally and '' by using a password '' allows for retrieval from inside or outside lines.The following reference(s) were/was used to create this question:CISA review manual 2014 Page number 358

3. Right Answer: B
Explanation: Privacy release supports shared extensions among several devices, ensuring that only one device at a time can use an extension.For your exam you should know below mentioned PBX features and Risks:System Features -Description -Risk -Automatic Call distribution -Allows a PBX to be configured so that incoming calls are distributed to the next available agent or placed on-hold until one become availableTapping and control of traffic -Call forwarding -Allow specifying an alternate number to which calls will be forwarded based on certain conditionUser tracking -Account codes -Used to:Track calls made by certain people or for certain projects for appropriate billingDial-In system access (user dials from outside and gain access to normal feature of the PBX)Changing the user class of service so a user can access a different set of features (i.e. the override feature)Fraud, user tracking, non authorized featuresAccess Codes -Key for access to specific feature from the part of users with simple instruments, i.e. traditional analog phones.Non-authorized features -Silent Monitoring -Silently monitors other calls -Eavesdropping -Conferencing -Allows for conversation among several usersEavesdropping, by adding unwanted/unknown parties to a conference override(intrude)Provides for the possibility to break into a busy line to inform another user an important messageEavesdropping -Auto-answer -Allows an instrument to automatically go when called usually gives an auditor or visible warning which can easily turned offGaining information not normally available, for various purposeTenanting -Limits system user access to only those users who belong to the same tenant group '' useful when one company leases out part of its building to other companies and tenants share an attendant, trunk lines,etcIllegal usage, fraud, eavesdroppingVoice mail -Stores messages centrally and '' by using a password '' allows for retrieval from inside or outside lines.Disclosure or destruction of all messages of a user when that user's password in known or discovered by an intruder, disabling of the voice mail system and even the entire switch by lengthy messages or embedded codes, illegal access to external lines.Privacy release -Supports shared extensions among several devices, ensuring that only one device at a time can use an extension. Privacy release disables the security by allowing devices to connect to an extension already in use.Eavesdropping -No busy extension -Allows calls to an in-use extension to be added to a conference when that extension is on conference and already off-hookEavesdropping a conference in progressDiagnostics -Allows for bypassing normal call restriction procedures. This kind of diagnostic is sometimes available from any connected device. It is a separate feature, in addition to the normal maintenance terminal or attendant diagnosticsFraud and illegal usage -Camp-on or call waiting -When activated, sends a visual audible warning to an off-hook instrument that is receiving another call. Another option of this feature is to conference with the camped-on or call waitingMaking the called individual a party to a conference without knowing it.Dedicated connections -Connections made through the PBX without using the normal dialing sequences. It can be used to create hot-lines between devices i.e. one rings when the other goes off-hook. It is also used for data connections between devices and the central processing facilityEavesdropping on a line -The following were incorrect answers:Call forwarding - Allow specifying an alternate number to which calls will be forwarded based on certain conditionTenanting -Limits system user access to only those users who belong to the same tenant group '' useful when one company leases out part of its building to other companies and tenants share an attendant, trunk lines,etcVoice Mail -Stores messages centrally and '' by using a password '' allows for retrieval from inside or outside lines.The following reference(s) were/was used to create this question:CISA review manual 2014 Page number358

4. Right Answer: B
Explanation: The word INCORRECTLY was the keyword used in the question. You need to find out the incorrectly described PBX feature from given options. The Tenanting feature is incorrectly described.Tenanting limits system user access to only those users who belong to the same tenant group '' useful when one company leases out part of its building to other companies and tenants share an attendant, trunk lines,etcFor your exam you should know below mentioned PBX features and Risks:System Features -Description -Risk -Automatic Call distribution -Allows a PBX to be configured so that incoming calls are distributed to the next available agent or placed on-hold until one become availableTapping and control of traffic -Call forwarding -Allow specifying an alternate number to which calls will be forwarded based on certain conditionUser tracking -Account codes -Used to:Track calls made by certain people or for certain projects for appropriate billingDial-In system access (user dials from outside and gain access to normal feature of the PBX)Changing the user class of service so a user can access a different set of features (i.e. the override feature)Fraud, user tracking, non authorized featuresAccess Codes -Key for access to specific feature from the part of users with simple instruments, i.e. traditional analog phones.Non-authorized features -Silent Monitoring -Silently monitors other calls -Eavesdropping -Conferencing -Allows for conversation among several usersEavesdropping, by adding unwanted/unknown parties to a conference override(intrude)Provides for the possibility to break into a busy line to inform another user an important messageEavesdropping -Auto-answer -Allows an instrument to automatically go when called usually gives an auditor or visible warning which can easily turned offGaining information not normally available, for various purposeTenanting -Limits system user access to only those users who belong to the same tenant group '' useful when one company leases out part of its building to other companies and tenants share an attendant, trunk lines,etcIllegal usage, fraud, eavesdroppingVoice mail -Stores messages centrally and '' by using a password '' allows for retrieval from inside or outside lines.Disclosure or destruction of all messages of a user when that user's password in known or discovered by an intruder, disabling of the voice mail system and even the entire switch by lengthy messages or embedded codes, illegal access to external lines.Privacy release -Supports shared extensions among several devices, ensuring that only one device at a time can use an extension. Privacy release disables the security by allowing devices to connect to an extension already in use.Eavesdropping -No busy extension -Allows calls to an in-use extension to be added to a conference when that extension is on conference and already off-hookEavesdropping a conference in progressDiagnostics -Allows for bypassing normal call restriction procedures. This kind of diagnostic is sometimes available from any connected device. It is a separate feature, in addition to the normal maintenance terminal or attendant diagnosticsFraud and illegal usage -Camp-on or call waiting -When activated, sends a visual audible warning to an off-hook instrument that is receiving another call. Another option of this feature is to conference with the camped-on or call waitingMaking the called individual a party to a conference without knowing it.Dedicated connections -Connections made through the PBX without using the normal dialing sequences. It can be used to create hot-lines between devices i.e. one rings when the other goes off-hook. It is also used for data connections between devices and the central processing facilityEavesdropping on a line -The following were incorrect answers:The other options presented correctly describes PBX features thus not the right choice.The following reference(s) were/was used to create this question:CISA review manual 2014 Page number358

5. Right Answer: D
Explanation: The word NOT the keyword used in the question. You need to find out the technique which preacher do not use to exploit PBX.SYN Flood -Sends a flood of TCP/SYN packets with forged sender address, causing half-open connections and saturates available connection capacity on the target machine.For CISA Exam you should know below mentioned techniques used by preacher for illegal purpose of PBX.Eavesdropping on conversation, without the other parties being aware of itEavesdropping on conference callIllegal forwarding calls from specific equipment to remote numbersForwarding a user to an unused or disabled number, thereby making it unreachable by external calls.The following were incorrect answers:The other options presented correctly describes the techniques used preacher for illegal purpose of PBX.The following reference(s) were/was used to create this question:CISA review manual 2014 Page number 357