Online Access Free CompTIA.CAS-004.v2024-02-08.q162 Practice Test (Page 21)

CAS-004 Exam Question 96

A security analyst discovered that a database administrator's workstation was compromised by malware. After examining the Jogs. the compromised workstation was observed connecting to multiple databases through ODBC. The following query behavior was captured:

Assuming this query was used to acquire and exfiltrate data, which of the following types of data was compromised, and what steps should the incident response plan contain?
A) Personal health information: Inform the human resources department of the breach and review the DLP logs.
) Account history; Inform the relationship managers of the breach and create new accounts for the affected users.
C) Customer IDs: Inform the customer service department of the breach and work to change the account numbers.
D) PAN: Inform the legal department of the breach and look for this data in dark web monitoring.

A.Option C

B.Option A

C.Option B

D.Option D

CAS-004 Exam Question 97

A Chief information Security Officer (CISO) has launched to create a rebuts BCP/DR plan for the entire company. As part of the initiative , the security team must gather data supporting s operational importance for the applications used by the business and determine the order in which the application must be back online.
Which of the following be the FIRST step taken by the team?

A.Create an SLA for each application that states when the application will come back online and distribute this information to the business units.

B.Implement replication of all servers and application data to back up detacenters that are geographically from the central datacenter and release an upload BPA to all clients.

C.Perform a review of all policies an procedures related to BGP a and DR and created an educated educational module that can be assigned to at employees to provide training on BCP/DR events.

D.Have each business unit conduct a BIA and categories the application according to the cumulative data gathered.

CAS-004 Exam Question 98

A security analyst is reading the results of a successful exploit that was recently conducted by third-party penetration testers. The testers reverse engineered a privileged executable. In the report, the planning and execution of the exploit is detailed using logs and outputs from the test However, the attack vector of the exploit is missing, making it harder to recommend remediation's. Given the following output:

The penetration testers MOST likely took advantage of:

A.A buffer overflow vulnerability

B.A plain-text password disclosure

C.An integer overflow vulnerability

D.A TOC/TOU vulnerability

CAS-004 Exam Question 99

A company suspects a web server may have been infiltrated by a rival corporation. The security engineer reviews the web server logs and finds the following:

The security engineer looks at the code with a developer, and they determine the log entry is created when the following line is run:

Which of the following is an appropriate security control the company should implement?

A.Restrict directory permission to read-only access.

B.Use server-side processing to avoid XSS vulnerabilities in path input.

C.Separate the items in the system call to prevent command injection.

D.Parameterize a query in the path variable to prevent SQL injection.

CAS-004 Exam Question 100

A security consultant is designing an infrastructure security solution for a client company that has provided the following requirements:
* Access to critical web services at the edge must be redundant and highly available.
* Secure access services must be resilient to a proprietary zero-day vulnerability in a single component.
* Automated transition of secure access solutions must be able to be triggered by defined events or manually by security operations staff.
Which of the following solutions BEST meets these requirements?

A.Implementation of multiple IPSec VPN solutions with diverse endpoint configurations enabling user optionality in the selection of a remote access provider

B.Remote access services deployed using vendor-diverse redundancy with event response driven by playbooks.

C.Two separate secure access solutions orchestrated by SOAR with components provided by the same vendor for compatibility.

D.Reverse TLS proxy configuration using OpenVPN/OpenSSL with scripted failover functionality that connects critical web services out to endpoint computers.

Other Version: 2843CompTIA.CAS-004.v2025-04-16.q409; 1925CompTIA.CAS-004.v2024-05-02.q315; 1616CompTIA.CAS-004.v2023-10-26.q155; 2435CompTIA.CAS-004.v2023-09-11.q196; 1483CompTIA.CAS-004.v2023-07-04.q118; 1621CompTIA.CAS-004.v2023-04-04.q100; 1429CompTIA.CAS-004.v2023-03-18.q82; 1369CompTIA.CAS-004.v2023-03-08.q83; 1679CompTIA.CAS-004.v2023-02-06.q91; 1181CompTIA.CAS-004.v2023-01-23.q73; 1407CompTIA.CAS-004.v2023-01-21.q71; 1363CompTIA.CAS-004.v2023-01-09.q75; 1752CompTIA.CAS-004.v2022-05-27.q44; 1553CompTIA.CAS-004.v2022-05-18.q62; 74CompTIA.Actual4dumps.CAS-004.v2022-04-25.by.norma.44q.pdf

Latest Upload: 160CompTIA.220-1202.v2026-06-16.q110; 112TheInstitutes.CPCU-500.v2026-06-16.q25; 156ACAMS.CAMS7-CN.v2026-06-16.q170; 183CBIC.CIC.v2026-06-15.q123; 128Peoplecert.ITIL-4-Specialist-High-velocity-IT.v2026-06-15.q16; 220HashiCorp.Terraform-Associate-004.v2026-06-15.q126; 130Peoplecert.ITILFNDv5.v2026-06-15.q26; 129Workday.Workday-Pro-HCM-Reporting.v2026-06-15.q28; 129Fortinet.NSE5_SSE_AD-7.6.v2026-06-15.q17; 327PMI.PMI-ACP.v2026-06-15.q523

CAS-004 Exam Question 96

CAS-004 Exam Question 97

CAS-004 Exam Question 98

CAS-004 Exam Question 99

CAS-004 Exam Question 100

Download PDF File