CFR-410 Exam Dumps - CyberSec First Responder

Go to page:

Question # 4

A company that maintains a public city infrastructure was breached and information about future city projects was leaked. After the post-incident phase of the process has been completed, which of the following would be

PRIMARY focus of the incident response team?

Restore service and eliminate the business impact.

Determine effective policy changes.

Inform the company board about the incident.

Contact the city police for official investigation.

Full Access

Question # 5

An organization recently suffered a breach due to a human resources administrator emailing employee names and Social Security numbers to a distribution list. Which of the following tools would help mitigate this risk from recurring?

Data loss prevention (DLP)

Firewall

Web proxy

File integrity monitoring

Full Access

Question # 6

A security engineer is setting up security information and event management (SIEM). Which of the following log sources should the engineer include that will contain indicators of a possible web server compromise? (Choose two.)

NetFlow logs

Web server logs

Domain controller logs

Proxy logs

FTP logs

Full Access

Question # 7

After successfully enumerating the target, the hacker determines that the victim is using a firewall. Which of the following techniques would allow the hacker to bypass the intrusion prevention system (IPS)?

Stealth scanning

Xmas scanning

FINS scanning

Port scanning

Full Access