How many questions are in this quiz?

This quiz has 110 questions covering containment, recovery, and reporting decisions in ransomware incidents.

Is there a timer or time limit?

No. The quiz has no timer, so you can take your time on each scenario.

What answer format does the quiz use?

Every question is multiple-choice with 4 options.

Can I choose the number of questions and difficulty?

Yes. You can select your preferred question count and difficulty before starting to match your practice goals.

What topics are covered beyond containment?

You’ll also face recovery planning, backup validation, restore sequencing, communications, and incident reporting basics.

Ransomware Response Quiz

About this quiz

What you’ll practice

Ransomware response is a sequence of high-stakes decisions, and this quiz helps you rehearse them without the pressure of a live incident. You’ll practice identifying the right next step for contain, recover, and report across mixed-difficulty scenarios.

Each question uses 4 options and there’s no timer, so you can slow down and think through evidence, dependencies, and risk.

Common pitfalls to avoid

Many responders lose time by focusing on eradication before containment, or by restoring systems before validating backups and access paths. Another frequent mistake is inconsistent communication: unclear status updates, missing legal/privacy considerations, or premature attribution.

How difficulty and length work

Difficulty is balanced as “Mixed,” blending foundational concepts (like isolation and triage) with tougher judgment calls (like restore sequencing and stakeholder reporting). Choose your preferred question count and difficulty before you start to tailor the session to a quick refresher or a full drill.