CS0-001 무료 덤프문제 온라인 액세스

The help desk informed a security analyst of a trend that is beginning to develop regarding a suspicious email that has been reported by multiple users. The analyst has determined the email includes an attachment named invoice.zip that contains the following files:
Locky.js
xerty.ini
xerty.lib
Further analysis indicates that when the .zip file is opened, it is installing a new version of ransomware on the devices. Which of the following should be done FIRST to prevent data on the company NAS from being encrypted by infected devices?

• A.Add the URL included in the .js file to the company's web proxy filter.
• B.Move the files from the NAS to a cloud-based storage solution.
• C.Disable access to the company VPN.
• D.Set permissions on file shares to read-only.

Malware is suspected on a server in the environment. The analyst is provided with the output of commands from servers in the environment and needs to review all output files in order to determine which process running on one of the servers may be malware.
Instructions:
Servers 1, 2 and 4 are clickable. Select the Server which hosts the malware, and select the process which hosts this malware.
If any time you would like to bring back the initial state of the simulation, please select the Reset button. When you have completed the simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue.

정답:

Explanation:

A threat intelligence feed has posted an alert stating there is a critical vulnerability in the kernel. Unfortunately, the company's asset inventory is not current. Which of the following techniques would a cybersecurity analyst perform to find all affected servers within an organization?

• A.A manual log review from data sent to syslog
• B.An OS fingerprinting scan across all hosts
• C.A packet capture of data traversing the server network
• D.A service discovery scan on the network

When reviewing network traffic, a security analyst detects suspicious activity:

Based on the log above, which of the following vulnerability attacks is occurring?

• A.Heartbleed
• B.POODLE
• C.Zeus
• D.ShellShock
• E.DROWN

Which of the following is a control that allows a mobile application to access and manipulate information which should only be available by another application on the same mobile device (e.g. a music application posting the name of the current song playing on the device on a social media site)?

• A.Mutually exclusive access
• B.Dual authentication
• C.Co-hosted application
• D.Transitive trust