Online Access Free CuramSoftware.CS0-002.v2022-05-26.q114 Practice Test (Page 7)

CS0-002 Exam Question 26

A monthly job to install approved vendor software updates and hot fixes recently stopped working. The security team performed a vulnerability scan, which identified several hosts as having some critical OS vulnerabilities, as referenced in the common vulnerabilities and exposures (CVE) database.
Which of the following should the security team do NEXT to resolve the critical findings in the most effective manner? (Choose two.)

A.Tag the computers with critical findings as a business risk acceptance.

B.Resolve the monthly job issues and test them before applying them to the production network.

C.Patch the required hosts with the correct updates and hot fixes, and rescan them for vulnerabilities.

D.Remove the servers reported to have high and medium vulnerabilities.

E.Harden the hosts on the network, as recommended by the NIST framework.

F.Manually patch the computers on the network, as recommended on the CVE website.

CS0-002 Exam Question 27

While reviewing log files, a security analyst uncovers a brute-force attack that is being performed against an external webmail portal. Which of the following would be BEST to prevent this type of attack from beinq successful1?

A.Leverage password filters to prevent weak passwords on employee accounts from being exploited.

B.Configure a WAF with brute force protection rules in block mode

C.Create a new rule in the IDS that triggers an alert on repeated login attempts

D.Alter the lockout policy to ensure users are permanently locked out after five attempts.

E.Implement MFA on the email portal using out-of-band code delivery.

CS0-002 Exam Question 28

A security analyst is reviewing a suspected phishing campaign that has targeted an organisation. The organization has enabled a few email security technologies in the last year: however, the analyst believes the security features are not working. The analyst runs the following command:
> dig domain._domainkey.comptia.orq TXT
Which of the following email protection technologies is the analyst MOST likely validating?

A.DKIM

B.SPF

C.DNSSEC

D.DMARC

CS0-002 Exam Question 29

A security engineer is reviewing security products that identify malicious actions by users as part of a company's insider threat program. Which of the following is the MOST appropriate product category for this purpose?

A.WAF

B.SCAP

C.SOAR

D.UEBA

CS0-002 Exam Question 30

The help desk provided a security analyst with a screenshot of a user's desktop:

For which of the following is aircrack-ng being used?

A.PCAP data collection

B.Brute-force attack

C.Rainbow attack

D.Wireless access point discovery

Other Version: 6620CompTIA.CS0-002.v2025-05-26.q232; 1359CompTIA.CS0-002.v2025-03-01.q161; 1970CuramSoftware.CS0-002.v2023-11-04.q182; 1413CuramSoftware.CS0-002.v2023-10-26.q112; 1814CuramSoftware.CS0-002.v2023-08-08.q122; 1784CuramSoftware.CS0-002.v2023-06-14.q111; 2696CuramSoftware.CS0-002.v2023-05-12.q218; 3404CuramSoftware.CS0-002.v2023-03-21.q254; 3245CuramSoftware.CS0-002.v2023-03-10.q196; 3035CuramSoftware.CS0-002.v2023-02-04.q184; 2935CuramSoftware.CS0-002.v2023-01-31.q186; 3098CuramSoftware.CS0-002.v2023-01-16.q187; 6869CuramSoftware.CS0-002.v2022-09-30.q394; 7085CuramSoftware.CS0-002.v2022-03-25.q285; 59Curam-Software.Suretorrent.CS0-002.v2022-03-24.by.sigrid.285q.pdf; 4356CuramSoftware.CS0-002.v2022-01-08.q156; 46Curam-Software.Exam-killer.CS0-002.v2021-08-20.by.ruth.172q.pdf

Latest Upload: 136Oracle.1D0-1057-25-D.v2026-06-03.q29; 270NAHQ.CPHQ.v2026-06-03.q396; 253CompTIA.220-1201.v2026-06-03.q196; 155GIAC.GCFE.v2026-06-03.q78; 152HIMSS.CPHIMS.v2026-06-03.q45; 233Google.Professional-Cloud-Architect.v2026-06-03.q165; 156HP.HPE7-A09.v2026-06-02.q48; 165ACDIS.CCDS-O.v2026-06-02.q56; 148Microsoft.AB-730.v2026-06-02.q31; 211ASQ.CSSBB.v2026-06-02.q130

CS0-002 Exam Question 26

CS0-002 Exam Question 27

CS0-002 Exam Question 28

CS0-002 Exam Question 29

CS0-002 Exam Question 30

Download PDF File