Which of the following should be found within an organization's acceptable use policy?

• A.Administrator accounts must be audited monthly, and inactive accounts should be removed.
• B.Passwords must be eight characters in length and contain at least one special character.
• C.Customer data must be handled properly, stored on company servers, and encrypted when possible
• D.Consequences of violating the policy could include discipline up to and including termination.

Comment: *

Name: *

Email: *

Verification: *

Which of the following utilities could be used to resolve an IP address to a domain name, assuming the address has a PTR record?

• A.ifconfig
• B.ping
• C.arp
• D.nbtstat

Comment: *

Name: *

Email: *

Verification: *

Employees at a manufacturing plant have been victims of spear phishing, but security solutions prevented further intrusions into the network. Which of the following is the MOST appropriate solution in this scenario?

• A.Update antivirus and malware definitions
• B.Continue to monitor security devices
• C.Migrate email services to a hosted environment
• D.Provide security awareness training

Comment: *

Name: *

Email: *

Verification: *

Because some clients have reported unauthorized activity on their accounts, a security analyst is reviewing network packet captures from the company's API server. A portion of a capture file is shown below:
POST /services/v1_0/Public/Members.svc/soap <s:Envelope+xmlns:s="http://schemas.s/soap/envelope/
"><s:Body><GetIPLocation+xmlns="
<request+xmlns:a="http://schemas.somesite.org http://www.w3.org/2001/XMLSchema-instance
"></s:Body></s:Envelope> 192.168.1.22 - - api.somesite.com 200 0 1006 1001 0 192.168.1.22 POST /services/v1_0/Public/Members.svc/soap
<<a:Password>Password123</a:Password><a:ResetPasswordToken+i:nil="true"/>
<a:ShouldImpersonatedAuthenticationBePopulated+i:nil="true"/><a:Username>[email protected]
192.168.5.66 - - api.somesite.com 200 0 11558 1712 2024 192.168.4.89
POST /services/v1_0/Public/Members.svc/soap <s:Envelope+xmlns:s="
http://schemas.xmlsoap.org/soap/envelope/"><s:Body><GetIPLocation+xmlns="http://tempuri.org/">
<a:IPAddress>516.7.446.605</a:IPAddress><a:ZipCode+i:nil="true"/></request></GetIPLocation></s:Body><
192.168.1.22 - - api.somesite.com 200 0 1003 1011 307 192.168.1.22
POST /services/v1_0/Public/Members.svc/soap <s:Envelope+xmlns:s="
http://schemas.xmlsoap.org/soap/envelope/"><s:Body><IsLoggedIn+xmlns="http://tempuri.org/">
<request+xmlns:a="http://schemas.datacontract.org/2004/07/somesite.web+xmlns:i="
http://www.w3.org/2001/XMLSchema-instance"><a:Authentication>
<a:ApiToken>kmL4krg2CwwWBan5BReGv5Djb7syxXTNKcWFuSjd</a:ApiToken><a:ImpersonateUserId>0<
<a:NetworkId>4</a:NetworkId><a:ProviderId>''1=1</a:ProviderId><a:UserId>13026046</a:UserId></a:Authe
192.168.5.66 - - api.somesite.com 200 0 1378 1209 48 192.168.4.89
Which of the following MOST likely explains how the clients' accounts were compromised?

• A.A SQL injection attack was carried out on the server.
• B.An XSS scripting attack was carried out on the server.
• C.The clients' authentication tokens were impersonated and replayed.
• D.The clients' usernames and passwords were transmitted in cleartext.

Comment: *

Name: *

Email: *

Verification: *

An organization recently had its strategy posted to a social media website. The document posted to the website is an exact copy of a document stored on only one server in the organization. A security analyst sees the following output from a command-line entry on the server suspected of the problem:

Which of the following would be the BEST course of action?

• A.Figure out which of the Firefox processes is the malware
• B.Monitor all the established TCP connections for data exfiltration
• C.Remove the malware associated with PID 773
• D.Block all TCP connections at the firewall
• E.Investigate the malware associated with PID 123

Comment: *

Name: *

Email: *

Verification: *