The question says, 'from customers' who won't enforce the other options.

The log entry in the image suggests that the system is potentially under attack, as the User-Agent header contains what looks like a shell command: ${/bin/sh/id}. This type of activity may indicate an attempted command injection attack, where an attacker is trying to execute shell commands via a vulnerable web application.

For an SSL/TLS certificate to be trusted, the system must have the root certificate (and any intermediate certificates) from the issuing Certificate Authority (CA) installed in its trusted certificate store. If the root or intermediate certificate is missing, the system will not recognize the SSL certificate as valid, leading to trust errors during testing.

This scenario describes a phishing attack, where the employee tricked the systems administrator into performing an action (changing the email server's password) by sending a malicious web link. Security awareness training that focuses on recognizing phishing attempts can help employees and administrators identify and avoid such manipulative tactics in the future. Training should include spotting suspicious links, verifying requests, and understanding social engineering techniques.

A. Deploy a SIEM solution Explanation: SIEM (Security Information and Event Management) solutions are designed specifically to collect, aggregate, and analyze large volumes of logs from different sources (e.g., network devices, servers, endpoints, security systems).

Gap Analysis in Security: Compares what you have (existing security) vs what you need (required security) Shows what's missing Creates plan to fill the gaps Helps meet new security requirements efficiently Like a security checklist that shows:

Have ✓

Need ✗

Plan to get there →

C. Encryption Explanation: When transferring sensitive data over FTP (File Transfer Protocol), encryption is the best method to ensure the confidentiality of the data. FTP by itself does not provide any encryption, meaning that the data is transmitted in plain text, which can be intercepted by attackers.