Question 20 of 76 from exam 350-201-CBRCOR: Performing CyberOps Using Cisco Security Technologies

Question 20 of 76 from exam 350-201-CBRCOR: Performing CyberOps Using Cisco Security Technologies

Prev Question Next Question

Question

DRAG DROP - An engineer notices that unauthorized software was installed on the network and discovers that it was installed by a dormant user account.

The engineer suspects an escalation of privilege attack and responds to the incident.

Drag and drop the activities from the left into the order for the response on the right.

Select and Place:

Answer Area Identify systems to be taken offline Step 1 Conduct content scans Step 2 Collect log data Step 3 Request system patch Step 4 Reimage Step 5

Explanations

Answer Area Identify systems to be taken offline Conduct content scans Conduct content scans Collect log data Collect log data Identify systems to be taken offline Request system patch Reimage Reimage Request system patch
Prev Question Next Question