A user contacts the help desk to report the following:
* Two days ago, a pop-up browser window prompted the user for a name and password after connecting
* to the corporate wireless SSID. This had never happened before, but the user entered the information as requested.
* The user was able to access the Internet but had trouble accessing the department share until the next day.
* The user is now getting notifications from the bank about unauthorized transactions.
Which of the following attack vectors was MOST likely used in this scenario?

• A.ARP poisoning
• B.Rogue access point
• C.Evil twin
• D.DNS poisoning

Comment: *

Name: *

Email: *

Verification: *

A web server administrator has redundant servers and needs to ensure failover to the secondary server when the primary server goes down. Which of the following should the administrator implement to avoid disruption?

• A.Dual power supply
• B.laaS
• C.NIC teaming
• D.High availability

Comment: *

Name: *

Email: *

Verification: *

A network engineer is troubleshooting wireless network connectivity issues that were reported by users. The issues are occurring only in the section of the building that is closest to the parking lot. Users are intermittently experiencing slow speeds when accessing websites and are unable to connect to network drives. The issues appear to increase when laptop users return desks after using their devices in other areas of the building. There have also been reports of users being required to enter their credentials on web pages in order to gain access to them. Which of the following is the MOST likely cause of this issue?

• A.The users in that section of the building are on a VLAN that is being blocked by the firewall.
• B.An external access point is engaging in an evil-twin attack.
• C.The signal on the WAP needs to be increased in that section of the building.
• D.The certificates have expired on the devices and need to be reinstalled.

Comment: *

Name: *

Email: *

Verification: *

Following a prolonged datacenter outage that affected web-based sales a company has decided to move its operations to a private cloud solution. The security team has received the following requirements:
- There must be visibility into how teams are using cloud-based
services.
- The company must be able to identify when data related to payment
cards is being sent to the cloud.
- Data must be available regardless of the end user's geographic
location
- Administrators need a single pane-of-glass view into traffic and
trends.
Which of the following should the security analyst recommend?

• A.Configure a web-based content filter.
• B.Implement a CASB solution.
• C.Install a DLP solution to monitor data in transit.
• D.Create firewall rules to restrict traffic to other cloud service providers.

Comment: *

Name: *

Email: *

Verification: *

An incident response technician collected a mobile device during an investigation. Which of the following should the technician do to maintain chain of custody?

• A.Record the collection in a blockchain-protected public ledger.
• B.Place the device in a Faraday cage to prevent corruption of the data.
• C.Lock the device in a safe or other secure location to prevent theft or alteration.
• D.Document the collection and require a sign-off when possession changes.

Comment: *

Name: *

Email: *

Verification: *