A company's bank has reported that multiple corporate credit cards have been stolen over the past several weeks. The bank has provided the names of the affected cardholders to the company's forensics team to assist in the cyber-incident investigation.
An incident responder learns the following information:
- The timeline of stolen card numbers corresponds closely with affected users making Internet-based purchases from diverse websites via enterprise desktop PCs.
- All purchase connections were encrypted, and the company uses an SSL
inspection proxy for the inspection of encrypted traffic of the
hardwired network.
- Purchases made with corporate cards over the corporate guest WiFi
network, where no SSL inspection occurs, were unaffected.
Which of the following is the MOST likely root cause?
Which of the following utilize a subset of real data and are MOST likely to be used to assess the features and functions of a system and how it interacts or performs from an end user's perspective against defined test cases? (Select TWO).
Which two features are available only in next-generation firewalls? (Choose two )
A security analyst wants to verify that a client-server (non-web) application is sending encrypted traffic. Which of the following should the analyst use?
Which of the following encryption algorithms require one encryption key? (Select TWO).
