최신 CAS-005 무료덤프 - CompTIA SecurityX Certification

문제1

A global company's Chief Financial Officer (CFO) receives a phone call from someone claiming to be the Chief Executive Officer (CEO). The caller claims to be stranded and in desperate need of money. The CFO is suspicious, but the caller's voice sounds similar to the CEO's. Which of the following best describes this type of attack?

A. Spear phishing

B. Deepfake

C. Smishing

D. Automated exploit generation

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제2

A company was recently infected by malware. During the root cause analysis, the company determined that several users were installing their own applications. To prevent further compromises, the company has decided it will only allow authorized applications to run on its systems. Which of the following should the company implement?

A. Signing

B. Access control

C. HIPS

D. Permit listing

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제3

A security analyst is reviewing the following event timeline from an COR solution:

Which of the following most likely has occurred and needs to be fixed?

A. A logic law has introduced a TOCTOU vulnerability and must be addressed by the COR vendor

B. A potential insider threat is being investigated and will be addressed by the senior management team.

C. The Dl P has failed to block malicious exfiltration and data tagging is not being utilized property

D. An EDR bypass was utilized by a threat actor and updates must be installed by the administrator.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제4

A threat hunter is identifying potentially malicious activity associated with an APT. When the threat hunter runs queries against the SIEM platform with a date range of 60 to 90 days ago, the involved account seems to be typically most active in the evenings. When the threat hunter reruns the same query with a date range of 5 to 30 days ago, the account appears to be most active in the early morning. Which of the following techniques is the threat hunter using to better understand the data?

A. Adversary emulation

B. OSINT analysis activities

C. User behavior analytics

D. TTP-based inquiries

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제5

The identity and access management team is sending logs to the SIEM for continuous monitoring. The deployed log collector is forwarding logs to the SIEM. However, only false positive alerts are being generated. Which of the following is the most likely reason for the inaccurate alerts?

A. The SIEM indexes are 100 large

B. The data is not being properly parsed

C. The compute resources are insufficient to support the SIEM

D. The retention policy is not property configured

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제6

A security professional is investigating a trend in vulnerability findings for newly deployed cloud systems Given the following output:

Which of the following actions would address the root cause of this issue?

A. Deploying a WAF with virtual patching upstream of the affected systems

B. Automating the patching system to update base Images

C. Recompiling the affected programs with the most current patches

D. Disabling unused/unneeded ports on all servers

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제7

A company receives reports about misconfigurations and vulnerabilities in a third-party hardware device that is part of its released products. Which of the following solutions is the best way for the company to identify possible issues at an earlier stage?

A. Implementing a proper supply chain risk management program

B. Implementing a monitoring process for the integration between the application and the vendor appliance

C. Performing vulnerability tests on each device delivered by the providers

D. Performing regular red-team exercises on the vendor production line

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제8

A software development team requires valid data for internal tests. Company regulations, however do not allow the use of this data in cleartext. Which of the following solutions best meet these requirements?

A. Configuring data hashing

B. Implementing data obfuscation

C. Replacing data with null record

D. Deploying tokenization

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제9

A user reports application access issues to the help desk. The help desk reviews the logs for the user

Which of the following is most likely The reason for the issue?

A. The user inadvertently tripped the impossible travel security rule in the SSO system.

B. The user did not attempt to connect from an approved subnet

C. A threat actor has compromised the user's account and attempted to lop, m

D. The user is not allowed to access the human resources system outside of business hours

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제10

정답:

An organization is planning for disaster recovery and continuity of operations.
INSTRUCTIONS
Review the following scenarios and instructions. Match each relevant finding to the affected host.
After associating scenario 3 with the appropriate host(s), click the host to select the appropriate corrective action for that finding.
Each finding may be used more than once.
If at any time you would like to bring back the initial state of the simul-ation, please click the Reset All button.

최신 CAS-005 무료덤프 - CompTIA SecurityX Certification

우리와 연락하기

유용한 링크

최신 업데이트