In an attempt to prevent network attacks, cyber analysts share unique identifiable attributes of known attacks with colleagues. What three types of attributes or indicators of compromise are helpful to share? (Choose three.)
- features of malware files
- IP addresses of attack servers
- system ID of compromised systems
- BIOS of attacking systems
- changes made to end system software
- netbios names of compromised firewalls
| Answers Explanation & Hints:
Many network attacks can be prevented by sharing information about indicators of compromise (IOC). Each attack has unique identifiable attributes. Indicators of compromise are the evidence that an attack has occurred. IOCs can be identifying features of malware files, IP addresses of servers that are used in the attack, filenames, and characteristic changes made to end system software. |