SY0-501 Exam Dumps | A security administrator returning from a short vacation receives an account lock-out message when attempting

<< Prev Question Next Question >>

Question 168/311

A security administrator returning from a short vacation receives an account lock-out message when attempting to log into the computer. After getting the account unlocked the security administrator immediately notices a large amount of emails alerts pertaining to several different user accounts being locked out during the past three days. The security administrator uses system logs to determine that the lock-outs were due to a brute force attack on all accounts that has been previously logged into that machine.
Which of the following can be implemented to reduce the likelihood of this attack going undetected?

A. Password complexity rules

B. User access reviews

C. Continuous monitoring

D. Account lockout policies

Question List (311q): Question 1: To determine the ALE of a particular risk, which of the foll...; Question 2: A security administrator is trying to encrypt communication....; Question 3: Joe, a salesman, was assigned to a new project that requires...; Question 4: An administrator intends to configure an IPSec solution that...; Question 5: A user needs to send sensitive information to a colleague us...; Question 6: Which of the following occurs when the security of a web app...; Question 7: Which of the following AES modes of operation provide authen...; Question 8: Legal authorities notify a company that its network has been...; Question 9: A security analyst is mitigating a pass-the-hash vulnerabili...; Question 10: An organization has determined it can tolerate a maximum of ...; Question 11: An organization recently moved its custom web applications t...; Question 12: Which of the following threat actors is MOST likely to steal...; Question 13: An organization is using a tool to perform a source code rev...; Question 14: A third-party penetration testing company was able to succes...; Question 15: An organization identifies a number of hosts making outbound...; Question 16: A company's loss control department identifies theft as a re...; Question 17: A security administrator is tasked with implementing central...; Question 18: Which of the following vulnerability types would the type of...; Question 19: The POODLE attack is an MITM exploit that affects:...; Question 20: An employee receives an email, which appears to be from the ...; Question 21: Ann, a college professor, was recently reprimanded for posti...; Question 22: A company is developing a new system that will unlock a comp...; Question 23: When it comes to cloud computing, if one of the requirements...; Question 24: A product manager is concerned about continuing operations a...; Question 25: Which of the following is used to validate the integrity of ...; Question 26: Which of the following would be considered multifactor authe...; Question 27: Which of the following characteristics differentiate a rainb...; Question 28: Joe, an employee, wants to show his colleagues how much he k...; Question 29: Company policy requires the use if passphrases instead if pa...; Question 30: A chief Financial Officer (CFO) has asked the Chief Informat...; Question 31: An in-house penetration tester is using a packet capture dev...; Question 32: A security administrator wishes to implement a secure a meth...; Question 33: Which of the following could occur when both strong and weak...; Question 34: A company offers SaaS, maintaining all customers' credential...; Question 35: A software developer is concerned about DLL hijacking in an ...; Question 36: Which of the following are methods to implement HA in a web ...; Question 37: An organization has hired a penetration tester to test the s...; Question 38: A company is using a mobile device deployment model in which...; Question 39: Which of the following explains why vendors publish MD5 valu...; Question 40: Two users need to send each other emails over unsecured chan...; Question 41: A software development manager is taking over an existing so...; Question 42: An administrator is configuring access to information locate...; Question 43: A group of non-profit agencies wants to implement a cloud se...; Question 44: Which of the following components of printers and MFDs are M...; Question 45: In a corporation where compute utilization spikes several ti...; Question 46: A security analyst has received the following alert snippet ...; Question 47: Users in a corporation currently authenticate with a usernam...; Question 48: A senior incident response manager receives a call about som...; Question 49: An external attacker can modify the ARP cache of an internal...; Question 50: Security administrators attempted corrective action after a ...; Question 51: During a recent audit, it was discovered that several user a...; Question 52: A security administrator wants to configure a company's wire...; Question 53: A security analyst is updating a BIA document. The security ...; Question 54: Joe a website administrator believes he owns the intellectua...; Question 55: A security analyst is reviewing an assessment report that in...; Question 56: Due to regulatory requirements, a security analyst must impl...; Question 57: The administrator installs database software to encrypt each...; Question 58: An information security analyst needs to work with an employ...; Question 59: Which of the following is the BEST explanation of why contro...; Question 60: A supervisor in your organization was demoted on Friday afte...; Question 61: An organization is expanding its network team. Currently, it...; Question 62: The computer resource center issued smartphones to all first...; Question 63: Which of the following could help detect trespassers in a se...; Question 64: When trying to log onto a company's new ticketing system, so...; Question 65: A systems administrator is configuring a system that uses da...; Question 66: The Chief Security Officer (CISO) at a multinational banking...; Question 67: A network administrator wants to implement a method of secur...; Question 68: A database backup schedule consists of weekly full backups p...; Question 69: A company wants to ensure confidential data from storage med...; Question 70: The chief Security Officer (CSO) has reported a rise in data...; Question 71: A security administrator has been tasked with improving the ...; Question 72: Which of the following is the appropriate network structure ...; Question 73: The IT department needs to prevent users from installing unt...; Question 74: Which of the following would enhance the security of accessi...; Question 75: An attack that is using interference as its main attack to i...; Question 76: A company is allowing a BYOD policy for its staff. Which of ...; Question 77: A security administrator wants to implement a logon script t...; Question 78: An attacker compromises a public CA and issues unauthorized ...; Question 79: An organization's employees currently use three different se...; Question 80: A new security policy in an organization requires that all f...; Question 81: A black hat hacker is enumerating a network and wants to rem...; Question 82: A development team has adopted a new approach to projects in...; Question 83: A computer on a company network was infected with a zero-day...; Question 84: During a data breach cleanup, it is discovered that not all ...; Question 85: When designing a web based client server application with si...; Question 86: A web application is configured to target browsers and allow...; Question 87: A security analyst wants to harden the company's VoIP PBX. T...; Question 88: A systems administrator found a suspicious file in the root ...; Question 89: A security analyst is securing smartphones and laptops for a...; Question 90: An attacker uses a network sniffer to capture the packets of...; Question 91: An administrator is replacing a wireless router. The configu...; Question 92: The security administrator receives an email on a non-compan...; Question 93: Which of the following is an important step to take BEFORE m...; Question 94: An incident involving a workstation that is potentially infe...; Question 95: A security administrator is tasked with conducting an assess...; Question 96: A web server, which is configured to use TLS with AES-GCM-25...; Question 97: A system administrator needs to implement 802.1x whereby whe...; Question 98: A company's user lockout policy is enabled after five unsucc...; Question 99: A company is evaluating cloud providers to reduce the cost o...; Question 100: An auditor wants to test the security posture of an organiza...; Question 101: A manager suspects that an IT employee with elevated databas...; Question 102: In determining when it may be necessary to perform a credent...; Question 103: Which of the following is the proper way to quantify the tot...; Question 104: Given the log output: Max 15 00:15:23.431 CRT: #SEC_LOGIN-5-...; Question 105: In terms of encrypting data, which of the following is BEST ...; Question 106: After surfing the Internet, Joe, a user, woke up to find all...; Question 107: Which of the following types of cloud infrastructures would ...; Question 108: Malicious traffic from an internal network has been detected...; Question 109: Adhering to a layered security approach, a controlled access...; Question 110: Which of the following would meet the requirements for multi...; Question 111: A security analyst receives an alert from a WAF with the fol...; Question 112: A company is currently using the following configuration: IA...; Question 113: An analyst wants to implement a more secure wireless authent...; Question 114: A security analyst is hardening an authentication server. On...; Question 115: A security administrator suspects a MITM attack aimed at imp...; Question 116: After a merger, it was determined that several individuals c...; Question 117: Before an infection was detected, several of the infected de...; Question 118: A company has noticed multiple instances of proprietary info...; Question 119: A company hires a third-party firm to conduct an assessment ...; Question 120: A company wants to implement an access management solution t...; Question 121: A Chief Information Officer (CIO) has decided it is not cost...; Question 122: A security analyst accesses corporate web pages and inputs r...; Question 123: An attacker captures the encrypted communication between two...; Question 124: Which of the following scenarios BEST describes an implement...; Question 125: An application developer is designing an application involvi...; Question 126: Which of the following threats has sufficient knowledge to c...; Question 127: A company is planning to encrypt the files in several sensit...; Question 128: Following the successful response to a data-leakage incident...; Question 129: A security administrator has written a script that will auto...; Question 130: The help desk received a call after hours from an employee w...; Question 131: A network technician is setting up a segmented network that ...; Question 132: A Chief Information Officer (CIO) asks the company's securit...; Question 133: An external contractor, who has not been given information a...; Question 134: During a recent audit, it was discovered that many services ...; Question 135: The Chief Information Security Officer (CISO) is asking for ...; Question 136: Malware that changes its binary pattern on specific dates at...; Question 137: A company stores highly sensitive data files used by the acc...; Question 138: A security administrator learns that PII, which was gathered...; Question 139: Which of the following can affect electrostatic discharge in...; Question 140: The availability of a system has been labeled as the highest...; Question 141: Due to regulatory requirements, server in a global organizat...; Question 142: Which of the following cryptography algorithms will produce ...; Question 143: A systems administrator has isolated an infected system from...; Question 144: A network administrator adds an ACL to allow only HTTPS conn...; Question 145: An auditor is reviewing the following output from a password...; Question 146: Recently several employees were victims of a phishing email ...; Question 147: A systems administrator wants to generate a self-signed cert...; Question 148: A web developer improves client access to the company's REST...; Question 149: The SSID broadcast for a wireless router has been disabled b...; Question 150: An analyst receives an alert from the SIEM showing an IP add...; Question 151: A penetration tester has written an application that perform...; Question 152: A security analyst is testing both Windows and Linux systems...; Question 153: A small company's Chief Executive Officer (CEO) has asked it...; Question 154: An analyst is reviewing a simple program for potential secur...; Question 155: An organization wants to upgrade its enterprise-wide desktop...; Question 156: Which of the following should be used to implement voice enc...; Question 157: A security administrator wants to implement a company-wide p...; Question 158: Which of the following strategies should a systems architect...; Question 159: Which of the following works by implanting software on syste...; Question 160: The Chief Technology Officer (CTO) of a company, Ann, is put...; Question 161: After a security incident, management is meeting with involv...; Question 162: An organization is comparing and contrasting migration from ...; Question 163: Ann, a security administrator, has been instructed to perfor...; Question 164: An administrator is testing the collision resistance of diff...; Question 165: When performing data acquisition on a workstation, which of ...; Question 166: An attacker discovers a new vulnerability in an enterprise a...; Question 167: A security analyst is hardening a web server, which should a...; Question 168: A security administrator returning from a short vacation rec...; Question 169: A user clicked an email link that led to a website than infe...; Question 170: A system's administrator has finished configuring firewall A...; Question 171: Ann is the IS manager for several new systems in which the c...; Question 172: A computer emergency response team is called at midnight to ...; Question 173: A security analyst is reviewing the following output from an...; Question 174: A company wants to ensure that the validity of publicly trus...; Question 175: A technician is investigating a potentially compromised devi...; Question 176: A remote intruder wants to take inventory of a network so ex...; Question 177: A bank uses a wireless network to transmit credit card purch...; Question 178: Which of the following is the BEST reason to run an untested...; Question 179: A penetration tester harvests potential usernames from a soc...; Question 180: Which of the following refers to the term used to restore a ...; 1 commentQuestion 181: Which of the following would verify that a threat does exist...; Question 182: Which of the following would allow for the QUICKEST restorat...; Question 183: A Chief Information Officer (CIO) drafts an agreement betwee...; Question 184: A security analyst observes the following events in the logs...; Question 185: A manager wants to distribute a report to several other mana...; Question 186: A new hire wants to use a personally owned phone to access c...; Question 187: A security engineer is configuring a wireless network that m...; Question 188: A new firewall has been places into service at an organizati...; Question 189: Which of the following are used to increase the computing ti...; Question 190: A security administrator receives notice that a third-party ...; Question 191: Which of the following is commonly used for federated identi...; Question 192: Which of the following attack types is being carried out whe...; Question 193: A hacker has a packet capture that contains: (Exhibit) Which...; Question 194: Technicians working with servers hosted at the company's dat...; Question 195: Which of the following is the BEST reason for salting a pass...; Question 196: A security analyst reviews the following output: (Exhibit) T...; Question 197: A user is presented with the following items during the new-...; Question 198: A security analyst wishes to increase the security of an FTP...; Question 199: A company researched the root cause of a recent vulnerabilit...; Question 200: Which of the following differentiates a collision attack fro...; Question 201: A company is investigating a data compromise where data exfi...; Question 202: Many employees are receiving email messages similar to the o...; Question 203: Ann, a security administrator, wants to ensure credentials a...; Question 204: Upon entering an incorrect password, the logon screen displa...; Question 205: A systems administrator wants to protect data stored on mobi...; Question 206: A company recently replaced its unsecure email server with a...; Question 207: A security administrator is configuring a new network segmen...; Question 208: Joe notices there are several user accounts on the local net...; Question 209: Which of the following is a deployment concept that can be u...; Question 210: Which of the following attacks specifically impact data avai...; Question 211: A systems administrator is attempting to recover from a cata...; Question 212: Joe, the security administrator, sees this in a vulnerabilit...; Question 213: Which of the following specifically describes the exploitati...; Question 214: Which of the following network vulnerability scan indicators...; Question 215: A business has recently deployed laptops to all sales employ...; Question 216: A help desk technician receives a phone call from an individ...; Question 217: Which of the following best describes routine in which semic...; Question 218: Phishing emails frequently take advantage of high-profile ca...; Question 219: Two users need to securely share encrypted files via email. ...; Question 220: An attacker exploited a vulnerability on a mail server using...; Question 221: A user receives an email from ISP indicating malicious traff...; Question 222: Audit logs from a small company's vulnerability scanning sof...; Question 223: Which of the following is a document that contains detailed ...; Question 224: A security analyst is acquiring data from a potential networ...; Question 225: A security analyst is investigating a potential breach. Upon...; Question 226: A remote user (User1) is unable to reach a newly provisioned...; Question 227: A technician is configuring a wireless guest network. After ...; Question 228: Which of the following is the LEAST secure hashing algorithm...; Question 229: A cybersecurity analyst is looking into the payload of a ran...; Question 230: A security administrator must implement a system to ensure t...; Question 231: An administrator discovers the following log entry on a serv...; Question 232: A system administrator is configuring a site-to-site VPN tun...; Question 233: Which of the following delineates why it is important to per...; Question 234: An in-house penetration tester has been asked to evade a new...; Question 235: A Security Officer on a military base needs to encrypt sever...; Question 236: A technician has installed new vulnerability scanner softwar...; Question 237: A workstation puts out a network request to locate another s...; Question 238: A server administrator needs to administer a server remotely...; Question 239: Ann. An employee in the payroll department, has contacted th...; Question 240: An application was recently compromised after some malformed...; Question 241: Which of the following is commonly done as part of a vulnera...; Question 242: During a third-party audit, it is determined that a member o...; Question 243: An employer requires that employees use a key-generating app...; Question 244: An audit reported has identifies a weakness that could allow...; Question 245: As part of a new industry regulation, companies are required...; Question 246: A security administrator is developing training for corporat...; Question 247: Which of the following would a security specialist be able t...; Question 248: The Chief Executive Officer (CEO) of a major defense contrac...; Question 249: A security analyst is hardening a server with the directory ...; Question 250: Which of the following best describes the initial processing...; Question 251: An organization finds that most help desk calls are regardin...; Question 252: User from two organizations, each with its own PKI, need to ...; Question 253: A security technician is configuring an access management sy...; Question 254: A recent internal audit is forcing a company to review each ...; Question 255: A user suspects someone has been accessing a home network wi...; Question 256: Six months into development, the core team assigned to imple...; Question 257: A security administrator needs to address the following audi...; Question 258: An incident responder receives a call from a user who report...; Question 259: A security administrator has been assigned to review the sec...; Question 260: An organization is moving its human resources system to a cl...; Question 261: A Chief Security Officer (CSO) has been unsuccessful in atte...; Question 262: After correctly configuring a new wireless enabled thermosta...; Question 263: Which of the following precautions MINIMIZES the risk from n...; Question 264: A datacenter recently experienced a breach. When access was ...; Question 265: While reviewing the monthly internet usage it is noted that ...; Question 266: A network operations manager has added a second row of serve...; Question 267: A system administrator wants to implement an internal commun...; Question 268: A global gaming console manufacturer is launching a new gami...; Question 269: Company A agrees to provide perimeter protection, power, and...; Question 270: A business sector is highly competitive, and safeguarding tr...; Question 271: A company has a security policy that specifies all endpoint ...; Question 272: A security analyst is working on a project that requires the...; Question 273: A member of a digital forensics team, Joe arrives at a crime...; Question 274: A system administrator wants to provide for and enforce wire...; Question 275: Which of the following techniques can be bypass a user or co...; Question 276: An organization wishes to provide better security for its na...; Question 277: A security analyst notices anomalous activity coming from se...; Question 278: As part of the SDLC, a third party is hired to perform a pen...; Question 279: A dumpster diver recovers several hard drives from a company...; Question 280: An office manager found a folder that included documents wit...; Question 281: A security administrator is developing controls for creating...; Question 282: Which of the following BEST describes an important security ...; Question 283: A security analyst is investigating a suspected security bre...; Question 284: Having adequate lighting on the outside of a building is an ...; Question 285: A penetration tester is conducting an assessment on Comptia....; Question 286: The process of applying a salt and cryptographic hash to a p...; Question 287: Which of the following cryptographic algorithms is irreversi...; Question 288: An attacker wearing a building maintenance uniform approache...; Question 289: An administrator thinks the UNIX systems may be compromised,...; Question 290: A security technician has been receiving alerts from several...; Question 291: New magnetic locks were ordered for an entire building. In a...; Question 292: A bank requires tellers to get manager approval when a custo...; Question 293: A systems administrator wants to implement a wireless protoc...; Question 294: An organization plans to implement multifactor authenticatio...; Question 295: A penetration testing is preparing for a client engagement i...; Question 296: Users report the following message appears when browsing to ...; Question 297: Which of the following should a security analyst perform FIR...; Question 298: A security administrator needs to implement a system that de...; Question 299: An organization uses SSO authentication for employee access ...; Question 300: During a monthly vulnerability scan, a server was flagged fo...; Question 301: A security administrator is reviewing the following PowerShe...; Question 302: A security administrator receives an alert from a third-part...; Question 303: Which of the following should identify critical systems and ...; Question 304: An organization is trying to decide which type of access con...; Question 305: Which of the following types of keys is found in a key escro...; Question 306: An organization requires users to provide their fingerprints...; Question 307: During an application design, the development team specifics...; Question 308: A company is performing an analysis of the corporate enterpr...; Question 309: Multiple employees receive an email with a malicious attachm...; Question 310: A help desk is troubleshooting user reports that the corpora...; Question 311: Attackers have been using revoked certificates for MITM atta...

Question 168/311

LEAVE A REPLY

Download PDF File