NO.51 An online gaming company was impacted by a ransomware attack. An employee opened an attachment that was received via an SMS attack on a company-issued mobile device while connected to the network. Which of the following actions would help during the forensic analysis of the mobile device? (Select TWO)

NO.52 An analyst receives an alert from the continuous-monitoring solution about unauthorized

changes to the firmware versions on several field devices. The asset owners confirm that no firmware

version updates were performed by authorized technicians, and customers have not reported any

performance issues or outages. Which Of the following actions would be BEST for the analyst to

recommend to the asset owners to secure the devices from further exploitation?

NO.53 A security analyst reviews a recent network capture and notices encrypted inbound traffic on TCP port 465 was coming into the company's network from a database server. Which of the following will the security analyst MOST likely identify as the reason for the traffic on this port?

NO.54 Due to the continued support of legacy applications, an organization's enterprise password complexity rules are inadequate for its required security posture. Which of the following is the BEST compensating control to help reduce authentication compromises?

NO.55 A security analyst identified some potentially malicious processes after capturing the contents of memory from a machine during incident response. Which of the following procedures is the NEXT step for further in investigation?

NO.56 A company's Chief Information Officer wants to use a CASB solution to ensure policies are

being met during cloud access. Due to the nature of the company's business and risk appetite, the

management team elected to not store financial information in the cloud. A security analyst needs to

recommend a solution to mitigate the threat of financial data leakage into the cloud. Which of the

following should the analyst recommend?

NO.57 A general contractor has a list of contract documents containing critical business data that are stored at a public cloud provider. The organization's security analyst recently reviewed some of the storage containers and discovered most of the containers are not encrypted. Which of the following configurations will provide the MOST security to resolve the vulnerability?