AP Cybersecurity Unit 1 Lesson 4 Quiz

AP Cybersecurity — Unit 1, Topic 1.4

Topic 1.4 Quiz: AI-Based Cybersecurity Attacks

5 questions. Timed. AP exam difficulty. No retakes during the timer. Predict the answer before you pick.

5 Questions • 8 Minutes AP Difficulty • Timed
Time Remaining 8:00
Exam Overview: 5 questions covering AI attack techniques (voice cloning, deepfakes, spear phishing, filter evasion, dual-use tools), psychological tactics, and defenses. Format matches AP Cybersecurity exam style with scenario-based questions.
Q1 • Predict first: what AI technique makes a fake real-time video possible?

A company’s CFO receives a video call from what appears to be the CEO requesting an urgent wire transfer. The video shows the CEO speaking clearly with natural facial movements and the correct background. The CFO processes the transfer. Investigation later reveals the CEO never made the call. Which AI technique most likely enabled this attack?

A AI-generated spear phishing email spoofing the CEO’s email address
B Deepfake video using AI to synthesize the CEO’s appearance and voice in real time
C AI-powered malware installed on the CEO’s device that hijacked the camera
D Credential stuffing attack that accessed the CEO’s video conferencing account
Q2 • Identify WHY personalized attacks are more effective before reading choices

An attacker researches a hospital employee on social media and discovers: the employee’s manager’s name, a recent project deadline, and the name of a vendor the hospital uses. The attacker then sends an email referencing all three details and requests the employee click a link to complete a vendor setup. This attack is most effective compared to a generic phishing email because:

A The email uses technical language that bypasses email security filters
B AI scraped public information to craft a personalized email containing context the target finds credible, reducing the skepticism the target would apply to a generic message
C The email is longer than typical phishing emails so it appears more legitimate
D The attacker has access to the hospital’s internal systems and can send from a trusted address
Q3 • Identify the mechanism that would cause filter effectiveness to drop systematically over weeks

A security team analyzes a phishing campaign against their organization. In week 1, the AI email filter blocked 95% of the campaign emails. In week 2, the attacker sent a new wave and the filter blocked only 60%. In week 3, the filter blocked only 25%. Which explanation BEST accounts for this pattern?

A The email filter’s license expired, reducing its effectiveness over time
B The attacker added more email addresses each week, overwhelming the filter’s capacity
C The attacker used AI to analyze which email variants were blocked, then automatically rewrote subsequent campaigns to evade the active filter signatures — an adversarial feedback loop
D Human employees started clicking the emails, which trained the filter to see them as legitimate
Q4 • Describe the relationship between offensive and defensive AI before choosing

Which of the following accurately describes the relationship between AI-based offensive capabilities and AI-based defensive capabilities in cybersecurity?

A Offensive AI is always more advanced than defensive AI because attackers have unrestricted development resources
B Defensive AI eliminates the need for offensive AI once properly deployed
C The same underlying AI capabilities (NLP, generative models, classification) are used on both sides; attackers generate personalized attacks, defenders filter them — creating an arms race requiring continuous updates to defensive models
D Offensive and defensive AI use completely different technologies with no overlap
Q5 • Predict which single control defeats the attack regardless of how good the AI is at crafting the email

A small medical clinic wants to defend against AI-powered Business Email Compromise (BEC) attacks. Their IT consultant recommends: (1) an AI email security platform, (2) employee training on recognizing lookalike domains, and (3) a policy requiring out-of-band verification for any wire transfer request over $500. If only ONE control could be implemented, which provides the MOST protection against the attack chain described in Topic 1.4?

A The AI email security platform, because it automatically blocks the most AI-generated attack emails
B Employee training on lookalike domains, because it addresses the root cause of successful BEC attacks
C The out-of-band verification policy, because it defeats the attack even when the AI email filter fails and even when the employee is convinced by the email’s personalization — no wire transfer proceeds without independent confirmation
D All three controls are equally important and choosing only one would provide no meaningful protection
AP Cybersecurity · Unit 1 · Lesson 1.4 · Quiz

Get in Touch

Whether you're a student, parent, or teacher — I'd love to hear from you.

Just want free AP CS resources?

Enter your email below and check the subscribe box — no message needed. Students get daily practice questions and study tips. Teachers get curriculum resources and teaching strategies.

Typically responds within 24 hours

Message Sent!

Thanks for reaching out. I'll get back to you within 24 hours.

🏫 Welcome, fellow educator!

I offer curriculum resources, practice materials, and study guides designed for AP CS teachers. Let me know what you're looking for — whether it's classroom materials, a guest speaker, or Teachers Pay Teachers resources.

Email

[email protected]

📚

Courses

AP CSA, CSP, & Cybersecurity

Response Time

Within 24 hours

Prefer email? Reach me directly at [email protected]