CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
ComptiA CySA+ 2023 Questions and answer - Part 67
1. An analyst is observing unusual network traffic from a workstation. The workstation is communicating with a known malicious site over an encrypted tunnel. A fullantivirus scan with an updated antivirus signature file does not show any sign of infection. Which of the following has occurred on the workstation?
A) Zero-day attack
B) Cookie stealing
C) Known malware attack
D) Session hijack
2. As part of the SDLC, software developers are testing the security of a new web application by inputting large amounts of random data. Which of the following typesof testing is being performed?
A) Regression testing
B) Input validation
C) Fuzzing
D) Stress testing
3. A system administrator recently deployed and verified the installation of a critical patch issued by the companys primary OS vendor. This patch was supposed toremedy a vulnerability that would allow an adversary to remotely execute code from over the network. However, the administrator just ran a vulnerabilityassessment of networked systems, and each of them still reported having the same vulnerability. Which of the following is the MOST likely explanation for this?
A) The administrator did not wait long enough after applying the patch to run the assessment.
B) The patch did not remediate the vulnerability.
C) The administrator entered the wrong IP range for the assessment.
D) The vulnerability assessment returned false positives.
4. A security analyst is performing a review of Active Directory and discovers two new user accounts in the accounting department. Neither of the users has elevatedpermissions, but accounts in the group are given access to the companys sensitive financial management application by default. Which of the following is theBEST course of action?
A) Confirm the accounts are valid and ensure role-based permissions are appropriate
B) Remove the accounts access privileges to the sensitive application
C) Monitor the outbound traffic from the application for signs of data exfiltration
D) Disable the user accounts
E) Follow the incident response plan for the introduction of new accounts
5. Which of the following remediation strategies are MOST effective in reducing the risk of a network-based compromise of embedded ICS? (Select two.)(Select 2answers)
A) Patching
B) Disabling unused services
C) NIDS
D) Firewalling
E) Segmentation
A) Zero-day attack
B) Cookie stealing
C) Known malware attack
D) Session hijack
2. As part of the SDLC, software developers are testing the security of a new web application by inputting large amounts of random data. Which of the following typesof testing is being performed?
A) Regression testing
B) Input validation
C) Fuzzing
D) Stress testing
3. A system administrator recently deployed and verified the installation of a critical patch issued by the companys primary OS vendor. This patch was supposed toremedy a vulnerability that would allow an adversary to remotely execute code from over the network. However, the administrator just ran a vulnerabilityassessment of networked systems, and each of them still reported having the same vulnerability. Which of the following is the MOST likely explanation for this?
A) The administrator did not wait long enough after applying the patch to run the assessment.
B) The patch did not remediate the vulnerability.
C) The administrator entered the wrong IP range for the assessment.
D) The vulnerability assessment returned false positives.
4. A security analyst is performing a review of Active Directory and discovers two new user accounts in the accounting department. Neither of the users has elevatedpermissions, but accounts in the group are given access to the companys sensitive financial management application by default. Which of the following is theBEST course of action?
A) Confirm the accounts are valid and ensure role-based permissions are appropriate
B) Remove the accounts access privileges to the sensitive application
C) Monitor the outbound traffic from the application for signs of data exfiltration
D) Disable the user accounts
E) Follow the incident response plan for the introduction of new accounts
5. Which of the following remediation strategies are MOST effective in reducing the risk of a network-based compromise of embedded ICS? (Select two.)(Select 2answers)
A) Patching
B) Disabling unused services
C) NIDS
D) Firewalling
E) Segmentation
1. Right Answer: A
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: B,E
Explanation:
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: B,E
Explanation:
Tags:
comptia it exams it certification exams it certifications 2023 comptia exam comptia certification comptia questions comptia a+ comptia exam prep comptia 2023 compti prep materials comptia practice exams questions and answers practice tests test question test comptia a+ comptia a+ 1001 comptioa a+ 1002 comptia casp comptia cloud comptia cysa comptia it fundamentals comptia linux comptia network+ comptia security+ linux essentials0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment