HOTSPOT -
Select the appropriate attack and remediation from each drop-down list to label the corresponding attack with its remediation.
INSTRUCTIONS -
Not all attacks and remediation actions will be used.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
Hot Area:
Botnet->Enable DDoS protection RAT->Disable remote access services Worm-> Change default passwords Keylogger->2FA using push Backdoor->Code Review
proof for Keylogger -->2FA https://www.onelogin.com/learn/mfa-types-of-cyber-attacks
To remediate the worm, do I need to change system and app PWs? Does the PBQ allow for the selection of more than one remediation option?
Agreed on all
I agree with this selection with exception of the third. As the example given is a SQL Database, I'd say 'Change default application password;.
I agree. Will go with this.
Will go with this too
I think result 1. Web server ======> Botnet ===> Enable DDoS protection 2. User => RAT =====> Implement a host-base IPS 3. Database server ======> Worm ===> Change the default application password 4. Executive =====> Keylogger > Implement 2FA using push notification 5. Application =======> Backdoor > Conduct a code review
Agree on the 2. -> HIPS While disabling remote access services can be effective in preventing RAT attacks, it may not be practical or feasible in all situations, particularly in cases where remote access is necessary for legitimate business purposes. On the other hand, a host-based IPS provides real-time monitoring and protection against RAT attacks, as well as other types of threats. It can also be configured to provide alerts or take automatic actions when an attack is detected, which can help to minimize the damage caused by the attack. Therefore, I would recommend implementing a host-based IPS as the best preventative or remediation action against RATs.
But HIPS only covers one specific endpoint and not the whole network.
Correct and if you look at target is User
I just passed my exam!! All the questions were from here 99%. There was only 1 question that wasn't here. Also this was part of my test. You guys are awesome!! Thank you for your contribution!!
Were any other of the pbqs on here on your test? I take mine tomorrow Great job on passing
I just took the exam today 11/15/23 and this question was among the 3 PBQs i got. All 3 were in this dump. I passed with a score of 800/900. 90% of the questions on the exam were from here. This was my first attempt and i have no IT background. If you study these questions, you will do well on the exam. All 3 of the PBQs were from this dump. If you've gone through these practice questions and feel comfortable with the content, i say don't wait anymore, go ahead and take the damn thing. Don't be afraid! 90% of the exam are the exact questions from this dump. It doesn't get any better than this. I used so many different resources including CompTia's Certmaster, Professor Messer, and Dione. Even though these resources are good, they don't compare to having the actual questions in front of you to study and brainstorm with others. This is the best resource period. Thanks for all your contributions and good luck if you haven't taken it yet. You have what you need to be successful. Also, thank you examtopics for this super helpful resource. You guys are awesome!
I passed the exam on March, 11, 2024. This is on the exam. 1. Web server ======> Botnet ===> Enable DDoS protection 2. User => RAT =====> Disable remote access services 3. Database server ======> Worm ===> Change the default application password 4. Executive =====> Keylogger > Implement 2FA using push notification 5. Application =======> Backdoor > Conduct a code review
Thank you so much!
Passed my exam today with a score of 781 on my first try. Got 4 PBQs and this was one of them. Had a total of 74 questions. All my PBQs and maybe like 40% of my MCQs came from this dump. I studied with this dump, using the discussion section only. Even though most of my questions didn't come from here, it helped me learn concepts and topics that ultimately helped me in the exam. I am grateful for the team that put this together.
This task was on the exam. I took it on November 2, 2023. Score 786/900 ALL PBQs on the exam were from here. I got 3 PBQs and 82/83 questions total. I do not recall what I answered on this one I went with my knowledge. Make sure to get familiar with these settings, so no matter what you get you can handle the task. I got 30-40% of the questions from this dump, and only the simple ones, the questions that sweat me up, were not in the dump. So make use of what examtopics have provided us to study well and pass the exam. Good luck!
On what pages were most of your questions ?
(1) Botnet attacks involve compromising a huge number of hosts to launch massive DDOS attacks. Implementing DDOS protection. (2)RAT stands for remote access trojan. It allows attackers to control an infected host remotely. Disabling unnecessary remote access services can mitigate unauthorized access. (3) Unlike viruses which require human intervention to propagate through networks and systems, Worms are self-propagating. Changing the system's password would be the best course of action. If the system is compromised, this can undermine the security of all applications and services.
(4) Keyloggers are software and hardware tools to screen keystrokes, harvesting credentials, and sensitive information. keyloggers can capture keystrokes regardless of the services enabled on the system, making all running services vulnerable to keylogging. 2FA systems are designed to prevent multiple login attempts with the same passcode. (5) Backdoor malware is hidden in legitimate software to evade detection and gain unauthorized access to systems. Code review to ensure no malicious code was used.
This was on my exam 29.12.23
04/09/24 This question was on the exam. I have a free account so I only went up to 400 questions. But barely any of the MQ questions were on the exam.
This showed up on my exams just today
This was on my exam, 11/29/23
Can someone help me out? Completing the rest of the words I chose Logic Bomb -> Application Fuzzing Virus -> Implement host based IPS Spyware -> Update Cryptographic Passwords Adware -> Change Default Passwords Ransomware -> Disable vulnerable service Phishing -> Patch vulnerable service Is this correct?
Also thinking about other Malware attacks such as Spam -> Use 2FA, change or look at privacy settings. RootKits -> Apply Anti-Malware/Virus software Trojans -> Implement HIPS Hoaxes -> Be cautious of false information Curious if the answer on how to prevent for Trojans would be preventing through HIPS this time since they are not remote. As well as just skipping preventing for RootKit and perform a secure boot. I don't think the question would answer with Spam filters because thats too easy. Then finally hoaxes, was wondering if there was a better answer I can put. These 5 answers are just regular answers I came up with and they do not have an answer sheet or multiple choice to choose from.
Change Database Application Passwords: If the worm specifically targeted and compromised credentials associated with the database application, changing the application password might be a focused and appropriate response. This action helps prevent unauthorized access to the database through compromised application credentials. Change All System Passwords: If the worm has potentially compromised a broader set of credentials, including system-level accounts, changing all system passwords might be a more comprehensive approach. This action would address the possibility of the worm gaining access to various parts of the system, not just the database.
some of the answers given by ExamT are not CORRECT. Please guys, check the discussions and research privately to understand everything. Best of luck.
This was there on exam today
Took my exam today and I passed with 760, out of all the questions here I only got this question on my exam. But going through the questions here, help me a lot to revise and get familiar with the questions. I would highly recommend studying other materials as well.