CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
ComptiA Security+ Certification Exam Questions and answer - Part 8
1. A company hires a third-party firm to conduct an assessment of vulnerabilities exposed to the Internet. The firm informs the company that an exploit exists for an FTP server that had a version installed from eight years ago. The company has decided to keep the system online anyway,as no upgrade exists form the vendor. Which of the following BEST describes the reason why the vulnerability exists?
A) Zero-day threats
B) End-of-life system
C) Default configuration
D) Weak cipher suite
2. A company has won an important government contract. Several employees have been transferred from their existing projects to support a new contract. Some of the employees who have transferred will be working long hours and still need access to their project information to transition work to their replacements. Which of the following should be implemented to validate that the appropriate offboarding process has been followed?
A) Separation of duties
B) Permission auditing
C) Mandatory access control
D) Time-of-day restrictions
3. A company wants to ensure confidential data from storage media is sanitized in such a way that the drive cannot be reused. Which of the following method should the technician use?
A) Overwriting
B) Repartitioning
C) Wiping
D) Low-level formatting
E) Shredding
4. A home invasion occurred recently in which an intruder compromised a home network and accessed a WiFI- enabled baby monitor while the baby's parents were sleeping. Which of the following BEST describes how the intruder accessed the monitor?
A) Social engineering
B) Outdated antivirus
C) WiFi signal strength
D) Default configuration
5. After a merger between two companies a security analyst has been asked to ensure that the organization's systems are secured against infiltration by any former employees that were terminated during the transition. Which of the following actions are MOST appropriate to harden applications against infiltration by former employees? (Select TWO)(Select 2answers)
A) Develop and implement updated access control policies
B) Monitor VPN client access
C) Reduce failed login out settings
D) Assess and eliminate inactive accounts
E) Increase password complexity requirements
F) Review and address invalid login attempts
A) Zero-day threats
B) End-of-life system
C) Default configuration
D) Weak cipher suite
2. A company has won an important government contract. Several employees have been transferred from their existing projects to support a new contract. Some of the employees who have transferred will be working long hours and still need access to their project information to transition work to their replacements. Which of the following should be implemented to validate that the appropriate offboarding process has been followed?
A) Separation of duties
B) Permission auditing
C) Mandatory access control
D) Time-of-day restrictions
3. A company wants to ensure confidential data from storage media is sanitized in such a way that the drive cannot be reused. Which of the following method should the technician use?
A) Overwriting
B) Repartitioning
C) Wiping
D) Low-level formatting
E) Shredding
4. A home invasion occurred recently in which an intruder compromised a home network and accessed a WiFI- enabled baby monitor while the baby's parents were sleeping. Which of the following BEST describes how the intruder accessed the monitor?
A) Social engineering
B) Outdated antivirus
C) WiFi signal strength
D) Default configuration
5. After a merger between two companies a security analyst has been asked to ensure that the organization's systems are secured against infiltration by any former employees that were terminated during the transition. Which of the following actions are MOST appropriate to harden applications against infiltration by former employees? (Select TWO)(Select 2answers)
A) Develop and implement updated access control policies
B) Monitor VPN client access
C) Reduce failed login out settings
D) Assess and eliminate inactive accounts
E) Increase password complexity requirements
F) Review and address invalid login attempts
1. Right Answer: B
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: E
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: A,D
Explanation:
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: E
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: A,D
Explanation:
Tags:
comptia it exams it certification exams it certifications 2023 comptia exam comptia certification comptia questions comptia a+ comptia exam prep comptia 2023 compti prep materials comptia practice exams questions and answers practice tests test question test comptia a+ comptia a+ 1001 comptioa a+ 1002 comptia casp comptia cloud comptia cysa comptia it fundamentals comptia linux comptia network+ comptia security+ linux essentials0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment