PT0-002 Exam Dumps | A red-team tester has been contracted to emulate the threat posed by a malicious insider on a company's

<< Prev Question Next Question >>

Question 12/49

A red-team tester has been contracted to emulate the threat posed by a malicious insider on a company's network, with the constrained objective of gaining access to sensitive personnel files. During the assessment, the red-team tester identifies an artifact indicating possible prior compromise within the target environment.
Which of the following actions should the tester take?

A. Halt the assessment and follow the reporting procedures as outlined in the contract.

B. Perform forensic analysis to isolate the means of compromise and determine attribution.

C. Incorporate the newly identified method of compromise into the red team's approach.

D. Create a detailed document of findings before continuing with the assessment.

Question 12/49

LEAVE A REPLY

Download PDF File