212-89 Exam Question 61

Ethan, an incident handler, reviews traffic logs showing abnormal connections from internal devices to high- risk external domains. He traces these back to a misconfigured IoT device using outdated firmware. What kind of indicator was key in identifying the issue?
  • 212-89 Exam Question 62

    Which of the following terms refers to an organization's ability to make optimal use of digital evidence in a limited period of time and with minimal investigation costs?
  • 212-89 Exam Question 63

    Clark is investigating a cybercrime at TechSoft Solutions. While investigating the case, he needs to collect volatile information such as running services, their process IDs, startmode, state, and status.
    Which of the following commands will help Clark to collect such information from running services?
  • 212-89 Exam Question 64

    Robert is an incident handler working for Xsecurity Inc. One day, his organization faced a massive cyberattack and all the websites related to the organization went offline. Robert was on duty during the incident and he was responsible to handle the incident and maintain business continuity. He immediately restored the web application service with the help of the existing backups.
    According to the scenario, which of the following stages of incident handling and response (IH&R) process does Robert performed?
  • 212-89 Exam Question 65

    Ren is assigned to handle a security incident of an organization. He is tasked with forensics investigation to find the evidence needed by the management. Which of the following steps falls under the investigation phase of the computer forensics investigation process?