A new security engineer has started hardening systems. One of the hardening techniques the engineer is using involves disabling remote logins to the NAS. Users are now reporting the inability to use SCP to transfer files to the NAS, even though the data is still viewable from the users PCs. Which of the following isthe MOST likely cause of this issue?

Remote login was disabled in the networkd.config instead of using the sshd.conf

TFTP was disabled on the local hosts

SSH was turned off instead of modifying the configuration file

Network services are no longer running on the NAS

Which of the following is an example of risk avoidance?

Not installing new software to prevent compatibility errors

Installing security updates directly in production to expedite vulnerability fixes

Buying insurance to prepare for financial loss associated with exploits

Not taking preventive measures to stop the theft of equipment

A grocery store is expressing security and reliability concerns regarding the on-site backup strategy currently being performed by locally attached disks. The main concerns are the physical security of the backup media and the durability of the data stored on these devices Which of the following is a cost-effective approach to addressthese concerns?

Migrate to a cloud backup solution

Enhance resiliency by adding a hardware RAID.

Move data to a tape library and store the tapes off site

Install a local network-attached storage

Which of the following is a difference between a DRP and a BCP?

A BCP is a technical response to disasters while a DRP is operational.

A BCP keeps operations running during a disaster while a DRP does not.

A BCP prepares for any operational interruption while a DRP prepares for natural disasters

A BCP Is formally written and approved while a DRP is not

Which of the following uses six initial steps that provide basic control over system security by including hardware and software inventory, vulnerability management, and continuous monitoring to minimize risk in all network environments?

The Center for Internet Security

A security analyst was deploying a new website and found a connection attempting to authenticate on the site's portal. While Investigating The incident, the analyst identified the following Input in the username field: admin' or 1=1-- Which of the following BEST explains this type of attack?

Code to execute a race condition on the server

DLL injection to hijack administrator services

SQLi on the field to bypass authentication

Execution of a stored XSS on the website

Which of the following would satisfy three-factor authentication?

Password, fingerprint scanner, and retina scanner

Password, retina scanner, and NFC card

Password, hard token, and NFC card

Fingerprint scanner, hard token, and retina scanner

A security analyst is Investigating a malware incident at a company. The malware Is accessing a command-and-control website at www.comptia.com . All outbound Internet traffic is logged to a syslog server and stored in /logfiles/messages. Which of the following commands would be BEST for the analyst to use on the syslog server to search for recent traffic to the command-and-control website?

tail -500 /logfiles/messages | grep www.comptia.com

head -500 www.comptia.com | grep /logfiles/messages

cat /logfiles/messages | tail -500 www.comptia.com

grep -500 /logfiles/messages | cat www.comptia.com

SPQ5

Authored by Caitrin Catalan-Padilla

Fun

Professional Development

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

31 questions

Show all answers

MULTIPLE CHOICE QUESTION

1 min • 1 pt

A SOC is currently being outsourced. Which of the following is being used?

Microservices

SaaS

MSSP

PaaS

MULTIPLE CHOICE QUESTION

1 min • 1 pt

A security analyst is investigating a phishing email that contains a malicious document directed to the company's Chief Executive Officer (CEO). Which of the following should the analyst perform to understand the threat and retrieve possible IoCs?

Run a vulnerability scan against the CEOs computer to find possible vulnerabilities

Install a sandbox to run the malicious payload in a safe environment

Perform a traceroute to identify the communication path

Use netstat to check whether communication has been made with a remote host

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of the following controls would BEST identify and report malicious insider activities?

An intrusion detection system

A proxy

Audit trails

Strong authentication

MULTIPLE CHOICE QUESTION

1 min • 1 pt

A user's PC was recently infected by malware. The user has a legacy printer without vendor support, and the user's OS is fully patched. The user downloaded a driver package from the internet. No threats were found on the downloaded file, but during file installation, a malicious runtime threat was detected. Which of the following is MOST likely cause of the infection?

The driver has malware installed and was refactored upon download to avoid detection.

The user's computer has a rootkit installed that has avoided detection until the new driver overwrote key files.

The user's antivirus software definition were out of date and were damaged by the installation of the driver

The user's computer has been infected with a logic bomb set to run when new driver was installed.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

A company's cybersecurity department is looking for a new solution to maintain high availability. Which of the following can be utilized to build a solution? (Select Two)

A stateful inspection

IP hashes

A round robin

A VLAN

A DMZ

MULTIPLE CHOICE QUESTION

1 min • 1 pt

A network analyst is investigating compromised corporate information. The analyst leads to a theory that network traffic was intercepted before being transmitted to the internet. The following output was captured on an internal host. (See attached image)
Based on the IoCS, which of the following was the MOST likely attack used to compromise the network communication?

Denial of service

ARP poisoning

Command injection

MAC flooding

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Users reported several suspicious activities within the last two weeks that resulted in several unauthorized transactions. Upon investigation, the security analyst found the following. (See attached image) Multiple reports of breached credentials within that time period Traffic being redirected in certain parts of the network Fraudulent emails being sent by various internal users without their consent Which of the following types of attacks was MOST likely used?

Replay attack

Race condition

Cross site scripting

Request forgeries

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Fun

12 questions

Valentines Day Trivia

Quiz

•

Professional Development

SPQ5

A SOC is currently being outsourced. Which of the following is being used?

A security analyst is investigating a phishing email that contains a malicious document directed to the company's Chief Executive Officer (CEO). Which of the following should the analyst perform to understand the threat and retrieve possible IoCs?

Which of the following controls would BEST identify and report malicious insider activities?

A company's cybersecurity department is looking for a new solution to maintain high availability. Which of the following can be utilized to build a solution? (Select Two)

Which of the following BEST describes the method a security analyst would use to confirm a file that is downloaded from a trusted security website is not altered in transit or corrupted using a verified checksum?

A company wantsto deploy systems alongside production systems in order to entice threat actors and to learn more about attackers. Which of the following BEST describe these systems?

Access all questions and much more by creating a free account

Popular Resources on Wayground

Discover more resources for Fun