اختبار شهادة محلل الأمن السيبراني CompTIA CySA+

السؤال 270 من 1040

كل الأسئلة

تنبيه مهم

هذه الصفحة مخصصة للأرشفة وظهور السؤال في نتائج البحث فقط، وليست التجربة الفعلية للاختبار.

During an extended holiday break, a company suffered a security incident. This information was properly relayed to appropriate personnel in a timely manner, and the server was up to date and configured with appropriate auditing and logging. The Chief Information Security Officer wants to find out precisely what happened. Which of the following actions should the analyst take first?

A Clone the virtual server for forensic analysis.
B Log in to the affected server and begin analysis of the logs.
C Restore from the last known-good backup to confirm there was no loss of connectivity.
D Shut down the affected server immediately.

السؤال السابق

السؤال التالي

لا توجد نقاشات منشورة لهذا السؤال حالياً.