<< Prev Question Next Question >>

Question 10/29

After a multi-week threat hunting exercise, a security team confirms that an attacker gained access using valid credentials, moved laterally, and exfiltrated data without deploying malware. Senior leadership asks how the hunting program reduced organizational risk. Which outcome BEST demonstrates the value of threat hunting?

LEAVE A REPLY

Your email address will not be published. Required fields are marked *

Question List (29q)
Question 1: A threat hunter wants to detect credential dumping attempts ...
Question 2: Refer to the exhibit. (Exhibit) A company went through sever...
Question 3: A security operations team is transitioning from alert-drive...
Question 4: A SOC using Cisco security technologies wants to measure the...
Question 5: A SOC team using Cisco security technologies wants to improv...
Question 6: What triggers unstructured threat hunting?...
Question 7: (Exhibit) Refer to the exhibit. A cybersecurity team receive...
Question 8: During a structured hunt, analysts using Cisco SIEM tools co...
Question 9: Which hunting technique is MOST effective for detecting stea...
Question 10: After a multi-week threat hunting exercise, a security team ...
Question 11: A structured threat hunt using Cisco Secure Network Analytic...
Question 12: A threat hunter is usingCisco Secure Network Analytics (Stea...
Question 13: What is the classification of the pass-the-hash technique ac...
Question 14: The CISO must improve the threat-hunting strategy to strengt...
Question 15: Refer to the exhibit. (Exhibit) An analyst is evaluating art...
Question 16: A SOC team wants to detect lateral movement performed using ...
Question 17: A SOC team must prepare for a new phishing campaign that tri...
Question 18: A threat hunter completes a structured hunt and confirms mal...
Question 19: Refer to the exhibit. (Exhibit) A security engineer notices ...
Question 20: A threat hunter usesCisco Secure Network Analytics (Stealthw...
Question 21: (Exhibit) Refer to the exhibit. A penetration test performed...
Question 22: A SOC repeatedly discovers similar attacker behaviors during...
Question 23: A Cisco-focused SOC wants to move detection coverage higher ...
Question 24: A mature SOC notices that several incidents over the past ye...
Question 25: A SOC analyst using Cisco security tools wants to differenti...
Question 26: A threat hunting team wants to ensure hunts are repeatable, ...
Question 27: Refer to the exhibit. (Exhibit) An increase in company traff...
Question 28: (Exhibit) Refer to the exhibit. Which technique is used by t...
Question 29: A SOC team wants to detect lateral movement performed using ...