Multiple Choice
First responders, who are part of a core incident response team, have been working to contain an outbreak of ransomware that also led to data loss in a rush to isolate the three hosts that were calling out to the NAS to encrypt whole directories, the hosts were shut down immediately without investigation and then isolated. Which of the following were missed? (Choose two.)
A) CPU, process state tables, and main memory dumps
B) Essential information needed to perform data restoration to a known clean state
C) Temporary file system and swap space
D) Indicators of compromise to determine ransomware encryption
E) Chain of custody information needed for investigation
Correct Answer:
Verified
Correct Answer:
Verified
Q278: An internal application has been developed to
Q279: Ann, a member of the finance department
Q280: The Chief Executive Officer (CEO) of a
Q281: A product manager is concerned about the
Q282: Management is reviewing the results of a
Q284: The Chief Information Security Officer (CISO) has
Q285: The Chief Information Officer (CIO) wants to
Q286: A vendor develops a mobile application for
Q287: An organization's network engineering team recently deployed
Q288: A penetration testing manager is contributing to