اضغط هنا للانضمام الى قروب فوجي للإختبارات على تيليقرام

اختبار شهادة محلل الأمن السيبراني CompTIA CySA+

السؤال 201 من 1040

كل الأسئلة

A security analyst finds that two file servers generated alerts about shadow copies that were deleted by a script that was run from a temporary directory and deleted right after its execution. None of the systems administrators were aware of this task. The script executed the following commands:
vssadmin delete shadows /for=C /all /quiet
vssadmin delete shadows /for=D /all /quiet
Which of the following is the most likely malicious activity to follow?

الخيارات

  • A Lateral movement
  • B Unauthorized scheduled task
  • C Data exfiltration
  • D Ransomware event

النقاشات

لا توجد نقاشات منشورة لهذا السؤال حالياً.