- Home
- CompTIA
- CompTIA Cybersecurity Analyst (CySA+) Certification Exam
- CompTIA.CS0-001.v2019-05-18.q157
- Question 75
Valid CS0-001 Dumps shared by ExamDiscuss.com for Helping Passing CS0-001 Exam! ExamDiscuss.com now offer the newest CS0-001 exam dumps, the ExamDiscuss.com CS0-001 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com CS0-001 dumps with Test Engine here:
Access CS0-001 Dumps Premium Version
(458 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 75/157
Using a heuristic system to detect an anomaly in a computer's baseline, a system administrator was able
to detect an attack even though the company signature based IDS and antivirus did not detect it. Further
analysis revealed that the attacker had downloaded an executable file onto the company PC from the USB
port, and executed it to trigger a privilege escalation flaw. Which of the following attacks has MOST likely
occurred?
to detect an attack even though the company signature based IDS and antivirus did not detect it. Further
analysis revealed that the attacker had downloaded an executable file onto the company PC from the USB
port, and executed it to trigger a privilege escalation flaw. Which of the following attacks has MOST likely
occurred?
Correct Answer: B
- Question List (157q)
- Question 1: A software patch has been released to remove vulnerabilities...
- Question 2: A nuclear facility manager determined the need to monitor ut...
- Question 3: Policy allows scanning of vulnerabilities during production ...
- Question 4: A security analyst has noticed an alert from the SIEM. A wor...
- Question 5: A security analyst has discovered that an outbound SFTP proc...
- Question 6: A security analyst notices PII has been copied from the cust...
- Question 7: A database administrator contacts a security administrator t...
- Question 8: Following a data compromise, a cybersecurity analyst noticed...
- Question 9: During an investigation, a computer is being seized. Which o...
- Question 10: A centralized tool for organizing security events and managi...
- Question 11: A cybersecurity consultant is reviewing the following output...
- Question 12: A penetration tester is preparing for an audit of critical s...
- Question 13: Considering confidentiality and integrity, which of the foll...
- Question 14: Nmap scan results on a set of IP addresses returned one or m...
- Question 15: A network technician is concerned that an attacker is attemp...
- Question 16: Datacenter access is controlled with proximity badges that r...
- Question 17: Which of the following principles describes how a security a...
- Question 18: An organization wants to remediate vulnerabilities associate...
- Question 19: A security analyst is attempting to configure a vulnerabilit...
- Question 20: While reviewing proxy logs, the security analyst noticed a s...
- Question 21: As part of the SDLC, software developers are testing the sec...
- Question 22: An HR employee began having issues with a device becoming un...
- Question 23: An insurance company employs quick-response team drivers tha...
- Question 24: A Linux-based file encryption malware was recently discovere...
- Question 25: A security analyst was asked to join an outage call for a cr...
- Question 26: When reviewing network traffic, a security analyst detects s...
- Question 27: A business-critical application is unable to support the req...
- Question 28: During a routine review of firewall logs, an analyst identif...
- Question 29: A cybersecurity analyst has been asked to follow a corporate...
- Question 30: A staff member reported that a laptop has degraded performan...
- Question 31: A university wants to increase the security posture of its n...
- Question 32: Which of the following could be directly impacted by an unpa...
- Question 33: An alert has been distributed throughout the information sec...
- Question 34: A company has decided to process credit card transactions di...
- Question 35: The Chief Information Security Officer (CISO) asked for a to...
- Question 36: A security analyst is performing a review of Active Director...
- Question 37: A security analyst discovers a network intrusion and quickly...
- Question 38: A technician receives a report that a user's workstation is ...
- Question 39: A company has been a victim of multiple volumetric DoS attac...
- Question 40: A company has implemented WPA2, a 20-character minimum for t...
- Question 41: A technician recently fixed a computer with several viruses ...
- Question 42: Given the following access log: (Exhibit) Which of the follo...
- Question 43: A medical organization recently started accepting payments o...
- Question 44: A cybersecurity analyst is reviewing log data and sees the o...
- Question 45: Which of the following is MOST effective for correlation ana...
- Question 46: Which of the following countermeasures should the security a...
- Question 47: Which of the following tools should a cybersecurity analyst ...
- Question 48: A security analyst is assisting with a computer crime invest...
- Question 49: A computer has been infected with a virus and is sending out...
- Question 50: A company invested ten percent of its entire annual budget i...
- Question 51: A recently issued audit report highlighted exceptions relate...
- Question 52: Which of the following has the GREATEST impact to the data r...
- Question 53: A security analyst is reviewing packet captures for a specif...
- Question 54: During a recent audit, there were a lot of findings similar ...
- Question 55: After scanning the main company's website with the OWASP ZAP...
- Question 56: A technician is running an intensive vulnerability scan to d...
- Question 57: A company discovers an unauthorized device accessing network...
- Question 58: While a threat intelligence analyst was researching an indic...
- Question 59: A web application has a newly discovered vulnerability in th...
- Question 60: The Chief Information Security Officer (CISO) has asked the ...
- Question 61: A threat intelligence analyst who works for a financial serv...
- Question 62: Several users have reported that when attempting to save doc...
- Question 63: Which of the following utilities could be used to resolve an...
- Question 64: A network administrator is attempting to troubleshoot an iss...
- Question 65: Several accounting department users are reporting unusual In...
- Question 66: An analyst was testing the latest version of an internally d...
- Question 67: During which of the following NIST risk management framework...
- Question 68: Management is concerned with administrator access from outsi...
- Question 69: A SIEM analyst noticed a spike in activities from the guest ...
- Question 70: The Chief Security Officer (CSO) has requested a vulnerabili...
- Question 71: An analyst has received unusual alerts on the SIEM dashboard...
- Question 72: Which of the following commands would a security analyst use...
- Question 73: A cybersecurity professional wants to determine if a web ser...
- Question 74: A cybersecurity consultant found common vulnerabilities acro...
- Question 75: Using a heuristic system to detect an anomaly in a computer'...
- Question 76: After running a packet analyzer on the network, a security a...
- Question 77: The primary difference in concern between remediating identi...
- Question 78: When network administrators observe an increased amount of w...
- Question 79: A cybersecurity analyst traced the source of an attack to co...
- Question 80: Which of the following actions should occur to address any o...
- Question 81: A security analyst has determined the security team should t...
- Question 82: A recent audit has uncovered several coding errors and a lac...
- Question 83: Which of the following items represents a document that incl...
- Question 84: A cybersecurity analyst has received an alert that well-know...
- Question 85: A security analyst is creating ACLs on a perimeter firewall ...
- Question 86: A vulnerability analyst needs to identify all systems with u...
- Question 87: Which of the allowing is a best practice with regard to inte...
- Question 88: An analyst reviews a recent report of vulnerabilities on a c...
- Question 89: A security analyst at a small regional bank has received an ...
- Question 90: Company A's security policy states that only PKI authenticat...
- Question 91: A threat intelligence feed has posted an alert stating there...
- Question 92: A security analyst has just completed a vulnerability scan o...
- Question 93: The new Chief Technology Officer (CTO) is seeking recommenda...
- Question 94: Following a recent security breach, a post-mortem was done t...
- Question 95: Which of the following remediation strategies are MOST effec...
- Question 96: A security professional is analyzing the results of a networ...
- Question 97: A project lead is reviewing the statement of work for an upc...
- Question 98: Which of the following is a control that allows a mobile app...
- Question 99: A security analyst has determined that the user interface on...
- Question 100: A server contains baseline images that are deployed to sensi...
- Question 101: Which of the following are essential components within the r...
- Question 102: A security analyst determines that several workstations are ...
- Question 103: The development team currently consists of three developers ...
- Question 104: After a recent security breach, it was discovered that a dev...
- Question 105: A company has received the results of an external vulnerabil...
- Question 106: A production web server is experiencing performance issues. ...
- Question 107: Alerts have been received from the SIEM, indicating infectio...
- Question 108: Various devices are connecting and authenticating to a singl...
- Question 109: A security administrator determines several months after the...
- Question 110: An organization has recently experienced a data breach. A fo...
- Question 111: A security analyst is concerned that unauthorized users can ...
- Question 112: A security analyst begins to notice the CPU utilization from...
- Question 113: A security analyst is preparing for the company's upcoming a...
- Question 114: A red team actor observes it is common practice to allow cel...
- Question 115: After reviewing the following packet, a cybersecurity analys...
- Question 116: Which of the following represent the reasoning behind carefu...
- Question 117: Creating a lessons learned report following an incident will...
- Question 118: A recent audit included a vulnerability scan that found crit...
- Question 119: A system administrator has reviewed the following output: (E...
- Question 120: Creating an isolated environment in order to test and observ...
- Question 121: An analyst is observing unusual network traffic from a works...
- Question 122: During a web application vulnerability scan, it was discover...
- Question 123: Three similar production servers underwent a vulnerability s...
- Question 124: Given the following output from a Linux machine: file2cable ...
- Question 125: An organization wants to remediate vulnerabilities associate...
- Question 126: A cybersecurity analyst is completing an organization's vuln...
- Question 127: A cybersecurity analyst is hired to review the security meas...
- Question 128: A technician receives an alert indicating an endpoint is bea...
- Question 129: Company A permits visiting business partners from Company B ...
- Question 130: A security analyst performed a review of an organization's s...
- Question 131: An organization uses Common Vulnerability Scoring System (CV...
- Question 132: On which of the following organizational resources is the la...
- Question 133: Company A suspects an employee has been exfiltrating PII via...
- Question 134: As part of an upcoming engagement for a client, an analyst i...
- Question 135: An ATM in a building lobby has been compromised. A security ...
- Question 136: A security analyst is conducting traffic analysis and observ...
- Question 137: The help desk informed a security analyst of a trend that is...
- Question 138: A security analyst received several service tickets reportin...
- Question 139: Which of the following policies BEST explains the purpose of...
- Question 140: An analyst finds that unpatched servers have undetected vuln...
- Question 141: Which of the following is a vulnerability when using Windows...
- Question 142: A security analyst is performing a forensic analysis on a ma...
- Question 143: A new zero-day vulnerability was discovered within a basic s...
- Question 144: A security analyst is reviewing a report from the networking...
- Question 145: Given the following log snippet: (Exhibit) Which of the foll...
- Question 146: During the forensic a phase of a security investigation, it ...
- Question 147: Organizational policies require vulnerability remediation on...
- Question 148: An application development company released a new version of...
- Question 149: A cybersecurity analyst has several SIEM event logs to revie...
- Question 150: The Chief Information Security Officer (CISO) asks a securit...
- Question 151: A computer at a company was used to commit a crime. The syst...
- Question 152: A recent vulnerability scan found four vulnerabilities on an...
- Question 153: A retail corporation with widely distributed store locations...
- Question 154: A newly discovered malware has a known behavior of connectin...
- Question 155: Weeks before a proposed merger is scheduled for completion, ...
- Question 156: A threat intelligence analyst who works for a technology fir...
- Question 157: A systems administrator is trying to secure a critical syste...
