CS0-002 Exam Dumps - CompTIA CySA+ Certification Exam (CS0-002)

https://www.techtarget.com/searchsecurity/definition/data-masking

Masking is a technique that involves replacing or hiding some parts of sensitive information with symbols or characters, such as asterisks (*) or Xs. Masking can help safeguard the confidentiality of sensitive information while allowing limited access to authorized individuals, because it obscures the original data without altering its format or structure. For example, masking can be used to hide some digits of a credit card number or a social security number. Deidentification, hashing, or salting are other techniques that involve transforming or modifying sensitive information, but they do not allow limited access to authorized individuals. Reference: https://www.ibm.com/docs/en/ims/14.1?topic=masking-data

mstsc.exe is the process name for Remote Desktop Connection, a program that allows users to connect to remote computers or servers over a network or the Internet12. mstsc.exe is an indicator of system compromise if the user did not initiate or authorize a remote connection, as it may mean that an attacker has gained access to the system and is using it to connect to other systems or exfiltrate data3.

 A cloud access security broker (CASB) is a solution that acts as a gatekeeper between users and cloud-based SaaS services. A CASB can enforce security policies, such as data loss prevention (DLP), encryption, authentication, or access control, to protect sensitive data from unauthorized access, upload, or exfiltration. A CASB can also provide visibility and monitoring of cloud usage and activity1.

Answer below images

Option C shows a device that can perform a forensic copy of a hard drive. A forensic copy, also known as a forensic image or a bit-stream image, is an exact, unaltered digital copy of a piece of digital evidence. A forensic copy captures everything on the hard drive, including active and latent data, and preserves the integrity of the original evidence. A forensic copy can be used for forensic analysis without risking any changes to the original drive1. Option C shows a device that can connect to two hard drives and create a forensic copy from one drive to another using a write-blocker. A write-blocker is a tool that prevents any data from being written to the destination drive, ensuring that only a read-only copy is made2.