220-1102 · Question #614
220-1102 Question #614: Real Exam Question with Answer & Explanation
The correct answer is C: End user education. Since the ransomware attack originated via email, the most effective preventative measure against recurrence is end-user education, as it empowers individuals to recognize and avoid email-based threats like phishing or malicious attachments.
Question
A company was recently attacked by ransomware. The IT department has remediated the threat and determined that the attack method used was email. Which of the following the most effective way to prevent this issue from reoccurring?
Options
- ASpam filtering
- BMalware prevention software
- CEnd user education
- DStateful firewall inspection
Explanation
Since the ransomware attack originated via email, the most effective preventative measure against recurrence is end-user education, as it empowers individuals to recognize and avoid email-based threats like phishing or malicious attachments.
Common mistakes.
- A. Spam filtering helps block unwanted emails but may not catch sophisticated phishing or targeted spear-phishing attempts that bypass technical filters.
- B. Malware prevention software is essential for detecting and blocking malware execution, but it's a reactive measure that comes into play after a user has interacted with a malicious email, rather than preventing the initial interaction.
- D. Stateful firewall inspection inspects network packets to maintain connection states and enforce rules, but it primarily protects the network perimeter and is less effective at preventing internal users from falling victim to email-based social engineering.
Concept tested. Ransomware prevention via user awareness
Reference. https://learn.microsoft.com/en-us/microsoft-365/security/defender/end-user-training
Topics
Community Discussion
No community discussion yet for this question.