An analyst visits an internet forum looking for information about a tool. The analyst finds a threat that appears to contain relevant information. One of the posts says the following:

Which of the following BEST describes the attack that was attempted against the forum readers?

• A.XSS attack
• B.API attack
• C.SOU attack
• D.DLL attack

Comment: *

Name: *

Email: *

Verification: *

After a phishing scam for a user's credentials, the red team was able to craft a payload to deploy on a server.
The attack allowed the installation of malicious software that initiates a new remote session. Which of the following types of attacks has occurred?

• A.Privilege escalation
• B.Session replay
• C.Application programming interface
• D.Directory traversalw

Comment: *

Name: *

Email: *

Verification: *

A company is designing the layout of a new datacenter so it will have an optimal environmental temperature Which of the following must be included? (Select TWO)

• A.Removable doors
• B.An loT thermostat
• C.A humidity monitor
• D.An air gap
• E.A hot aisle
• F.A cold aisle

Comment: *

Name: *

Email: *

Verification: *

A security analyst receives a SIEM alert that someone logged in to the appadmin test account, which is only used for the early detection of attacks. The security analyst then reviews the following application log:

Which of the following can the security analyst conclude?

• A.A service account password may have been changed, resulting in continuous failed logins within the application.
• B.A credentialed vulnerability scanner attack is testing several CVEs against the application.
• C.An injection attack is being conducted against a user authentication system.
• D.A replay attack is being conducted against the application.

Comment: *

Name: *

Email: *

Verification: *

Which of the following ISO standards is certified for privacy?

• A.ISO 9001
• B.ISO 27002
• C.ISO 27701
• D.ISO 31000

Comment: *

Name: *

Email: *

Verification: *