An employee opens a web browser and types a URL into the address bar. Instead of reaching the requested site, the browser opens a completely different site. Which of the following types of attacks have MOST likely occurred? (Select TWO).

• A.Cross-site scripting
• B.Session hijacking
• C.DNS hijacking
• D.Domain hijacking
• E.Man-in-the-browser

Comment: *

Name: *

Email: *

Verification: *

A security engineer has enabled two-factor authentication on all workstations. Which of the following approaches are the MOST secure? (Select TWO).

• A.Password and fingerprint
• B.Password and voice
• C.Password and security question
• D.Password and smart card
• E.Password and CAPTCHA
• F.Password and one-time token

Comment: *

Name: *

Email: *

Verification: *

A company wants to deploy PKI on its Internet-facing website. The applications that are currently deployed are:
www.company.com (main website)
contactus.company.com (for locating a nearby location)
quotes.company.com (for requesting a price quote)
The company wants to purchase one SSL certificate that will work for all the existing applications and any future applications that follow the same naming conventions, such as store.company.com. Which of the following certificate types would BEST meet the requirements?

• A.Wildcard
• B.SAN
• C.Self-signed
• D.Extended validation

Comment: *

Name: *

Email: *

Verification: *

A security analyst is running a vulnerability scan to check for missing patches during a suspected security rodent.
During which of the following phases of the response process is this activity MOST likely occurring?

• A.Preparation
• B.Recovery
• C.Identification
• D.Containment

Comment: *

Name: *

Email: *

Verification: *

Given the following logs:

Which of the following BEST describes the type of attack that is occurring?

• A.Dictionary
• B.Pass-the-hash
• C.Password spraying
• D.Rainbow table

Comment: *

Name: *

Email: *

Verification: *