nerdexam
Cisco

350-401 · Question #448

Which two threats does AMP4E have the ability to block? (Choose two.)

The correct answer is B. ransomware C. Microsoft Word macro attack. AMP4E Threat Blocking Explanation AMP for Endpoints (AMP4E) is a Cisco endpoint security solution designed to detect, prevent, and respond to file-based and execution-based threats directly on endpoints. It blocks ransomware (B) by monitoring file system behavior and stopping mal

Submitted by femi9· Mar 6, 2026Security

Question

Which two threats does AMP4E have the ability to block? (Choose two.)

Options

  • ADDoS
  • Bransomware
  • CMicrosoft Word macro attack
  • DSQL injection
  • Eemail phishing

How the community answered

(61 responses)
  • A
    2% (1)
  • B
    93% (57)
  • D
    2% (1)
  • E
    3% (2)

Explanation

AMP4E Threat Blocking Explanation

AMP for Endpoints (AMP4E) is a Cisco endpoint security solution designed to detect, prevent, and respond to file-based and execution-based threats directly on endpoints. It blocks ransomware (B) by monitoring file system behavior and stopping malicious encryption processes before they spread, and it blocks Microsoft Word macro attacks (C) by detecting and preventing malicious macro execution within office documents - both of which are endpoint-level threats AMP4E is specifically engineered to handle.

The distractors are incorrect because DDoS (A) is a network-volumetric attack mitigated by tools like Cisco Umbrella or dedicated DDoS appliances, not endpoint agents. SQL injection (D) is a web application attack addressed by Web Application Firewalls (WAFs), and email phishing (E) is primarily handled by email security gateways like Cisco Email Security Appliance (ESA), not endpoint protection tools.

Memory Tip: Think of AMP4E as a "file and execution guardian" - if the threat lives or runs as a file on a device (ransomware encrypts files, macros execute within files), AMP4E can block it. Network attacks, web attacks, and email-level threats are handled by other Cisco tools.

Topics

#Endpoint security#Malware protection#Ransomware#Macro attacks

Community Discussion

No community discussion yet for this question.

Full 350-401 Practice