A security analyst needs to determine how an attacker was able to use User3 to gain a foothold within a company's network. The company's lockout policy requires that an account be locked out for a minimum of 15 minutes after three unsuccessful attempts. While reviewing the log files, the analyst discovers the following:

Which of the following attacks MOST likely occurred?

• A.Password-spraying
• B.Dictionary
• C.Brute-force
• D.Credential-stuffing

Comment: *

Name: *

Email: *

Verification: *

During an incident response, a security analyst observes the following log entry on the web server.

Which of the following BEST describes the type of attack the analyst is experience?

• A.Pass-the-hash
• B.Directory traversal
• C.SQL injection
• D.Cross-site scripting

Comment: *

Name: *

Email: *

Verification: *

On which of the following is the live acquisition of data for forensic analysis MOST dependent?
(Choose two.)

• A.Cryptographic or hash algorithm
• B.Right-to-audit clauses
• C.Data retention legislation
• D.Value and volatility of data
• E.Data accessibility
• F.Legal hold

Comment: *

Name: *

Email: *

Verification: *

A company is implementing MFA for all applications that store sensitive dat a. The IT manager wants MFA to be non-disruptive and user friendly. Which of the following technologies should the IT manager use when implementing MFA?

• A.One-time passwords
• B.Push notifications
• C.Hardware authentication
• D.Email tokens

Comment: *

Name: *

Email: *

Verification: *

Given the following logs:

Which of the following BEST describes the type of attack that is occurring?

• A.Rainbow table
• B.Password spraying
• C.Pass-the-hash
• D.Dictionary

Comment: *

Name: *

Email: *

Verification: *