CompTIA SY0-601 Quiz 18 Topic 4 Questions 86-90

Question: 1

A user's account is constantly being locked out. Upon further review, a security analyst found the following in the SIEM

q1_SY0-601

Which of the following describes what is occurring?

AAn attacker is utilizing a password-spraying attack against the account.

BAn attacker is utilizing a dictionary attack against the account.

CAn attacker is utilizing a brute-force attack against the account.

DAn attacker is utilizing a rainbow table attack against the account.

Show Answer

Question: 2

An organization recently discovered that a purchasing officer approved an invoice for an amount that was different than the original purchase order. After further investigation a security analyst determines that the digital signature for the fraudulent invoice is exactly the same as the digital signature for the correct invoice that had been approved Which of the following attacks MOST likely explains the behavior?

ABirthday

BRainbow table

CImpersonation

DWhaling

Show Answer

Question: 3

Which of the following controls would BEST identify and report malicious insider activities?

AAn intrusion detection system

BA proxy

CAudit trails

DStrong authentication

Show Answer

Question: 4

A user's PC was recently infected by malware. The user has a legacy printer without vendor support, and the user's OS is fully patched. The user downloaded a driver package from the internet. No threats were found on the downloaded file, but during file installation, a malicious runtime threat was detected. Which of the following is MOST likely cause of the infection?

AThe driver has malware installed and was refactored upon download to avoid detection.

BThe user's computer has a rootkit installed that has avoided detection until the new driver overwrote key files.

CThe user's antivirus software definition were out of date and were damaged by the installation of the driver

DThe user's computer has been infected with a logic bomb set to run when new driver was installed.

Show Answer

Question: 5

A company's cybersecurity department is looking for a new solution to maintain high availability. Which of the following can be utilized to build a solution? (Select Two)

AA stateful inspection

BIP hashes

CA round robin

DA VLAN

EA DMZ

Show Answer

A user's account is constantly being locked out. Upon further review, a security analyst found the following in the SIEM
Which of the following describes what is occurring?

Which of the following controls would BEST identify and report malicious insider activities?

A company's cybersecurity department is looking for a new solution to maintain high availability. Which of the following can be utilized to build a solution? (Select Two)

CompTIA SY0-601 Quiz:18 Topic:4 Questions:86-90

A user's account is constantly being locked out. Upon further review, a security analyst found the following in the SIEMWhich of the following describes what is occurring?

Which of the following controls would BEST identify and report malicious insider activities?

A company's cybersecurity department is looking for a new solution to maintain high availability. Which of the following can be utilized to build a solution? (Select Two)

CompTIA SY0-601 Quiz:18 Topic:4 Questions:86-90

A user's account is constantly being locked out. Upon further review, a security analyst found the following in the SIEM
Which of the following describes what is occurring?