Which type of DNS attack involves a threat actor creating multiple bogus sub-domains under a legitimate parent domain? DNS Stealth attacks DNS Domain Shadowing attacks DNS Tunneling attacks DNS Open…
Match the security policy to its description. Identifies change management, change control or asset management practices ==> Organizational policy Defines users permitted access to network resources and the verification procedures in…
The IT team in a company is reviewing network access by teleworkers. The team identifies a security risk based on the fact that a few employees do not change their…
In which phase of the NIST Incident Response Life Cycle are the vulnerabilities that have been exploited by the attacker corrected and patched? Containment, Eradication, and Recovery Post-Incident Activities Detection…
Match the network testing tool with its description. This is a network and security scanner which detects vulnerabilities ==> GFI LANguard This is a technology used in enterprise organizations to provide…
Refer to the exhibit. The help desk receives a work order describing an issue with a management application running on PC-B. The work order states that the network management application…
A software company uses a public cloud service for hosting development and deployment services. The company is evaluating options to protect against data breaches and compromised login credentials. What two…
Refer to the exhibit. The wireless router firewall is configured as shown. What action will be taken when packets that originate from the internet and have a destination IP address of…
An organization needs to implement a solution that would enable them to determine the order of security events occurring on the network. What technology should be implemented? DHCP SNMP NTP…
Refer to the exhibit. A specialist in the information security team is reviewing the Webroot threat report 2020. Based on the findings in the report, what is a technique used…
A company has set a policy that employees will be required to report any observed or suspected security issues. Which control type has the company implemented? administrative controls technical controls…
Which data type is protected through the use of an IPsec VPN? data in transit data at rest data in process data in storage Explanation & Hint: When data is…
What are three actions taken in the Detection & Analysis phase of the NIST Incident Response Life Cycle? (Choose three.) The CSIRT performs an initial analysis to determine the incident’s…
A cybersecurity technician sets up a honeypot within a separate DMZ of the enterprise network. What is the purpose of doing this? to set up an audit trail of threat…
A company provides service to process transaction data for clients. The company deals with sensitive customer information of their clients. The improper release of the information poses a serious risk…
The administrator of a Linux server uses the chmod 777 /usr/phones.txt command to assign permissions to a file that contains the company phone directory. What permissions are assigned with this command? All…
A network security technician is configuring account settings on Windows laptops that will be used by employees from their homes. Which Local Security Policy setting can prevent or discourage brute-force…
Refer to the exhibit. What type of software is installed on the host system to support the three virtual machines? Type 1 hypervisor software Type 2 hypervisor software edge computing…
An organization needs a solution that will generate alerts on malware that has made it through the network perimeter and infected internal systems. What technology would be an appropriate solution…
Match the alert classification to the description. a verified alert indicating an actual security incident ==> true positive there is no alert issued and benign normal traffic is correctly ignored…