Multiple Choice
A small business just recovered from a ransomware attack against its file servers by purchasing the decryption keys from the attackers. The issue was triggered by a phishing email and the IT administrator wants to ensure it does not happen again. Which of the following should the IT administrator do FIRST after recovery?
A) Scan the NAS for residual or dormant malware and take new daily backups that are tested on a frequent basis.
B) Restrict administrative privileges and patch all systems and applications.
C) Rebuild all workstations and install new antivirus software.
D) Implement application whitelisting and perform user application hardening.
Correct Answer:
Verified
Correct Answer:
Verified
Q44: A financial organization has adopted a new
Q45: A pharmaceutical sales representative logs on to
Q46: A security analyst is looking for a
Q47: A software developer needs to perform code-execution
Q48: A network administrator is setting up wireless
Q50: An analyst needs to identify the applications
Q51: An organization that is located in a
Q52: A Chief Information Security Officer (CISO) is
Q53: Which of the following will MOST likely
Q54: A company wants to deploy PKI on