Multiple Choice
A security analyst received an alert from the SIEM indicating numerous login attempts from users outside their usual geographic zones, all of which were initiated through the web-based mail server. The logs indicate all domain accounts experienced two login attempts during the same time frame. Which of the following is the MOST likely cause of this issue?
A) A password-spraying attack was performed against the organization.
B) A DDoS attack was performed against the organization.
C) This was normal shift work activity; the SIEM's AI is learning.
D) A credentialed external vulnerability scan was performed.
Correct Answer:
Verified
Correct Answer:
Verified
Q138: Given the Nmap request below: <img src="https://d2lvgg3v3hfg70.cloudfront.net/C1257/.jpg"
Q139: A security analyst gathered forensics from a
Q140: An audit has revealed an organization is
Q141: A team of security analysts has been
Q142: A Chief Security Officer (CSO) is working
Q144: For machine learning to be applied effectively
Q145: Which of the following MOST accurately describes
Q146: A large amount of confidential data was
Q147: While analyzing logs from a WAF, a
Q148: Which of the following software assessment methods