اضغط هنا للانضمام الى قروب فوجي للإختبارات على تيليقرام

اختبار شهادة محلل الأمن السيبراني CompTIA CySA+

السؤال 582 من 1040

كل الأسئلة

An organization has activated the CSIRT. A security analyst believes a single virtual server was compromised and immediately isolated from the network. Which of the following should the CSIRT conduct next?

الخيارات

  • A Take a snapshot of the compromised server and verify its integrity
  • B Restore the affected server to remove any malware
  • C Contact the appropriate government agency to investigate
  • D Research the malware strain to perform attribution

النقاشات

لا توجد نقاشات منشورة لهذا السؤال حالياً.