nerdexam
ExamsCAS-003Questions#528
CompTIA

CAS-003 · Question #528

CAS-003 Question #528: Real Exam Question with Answer & Explanation

The correct answer is B: Conducting user awareness training. The attack vector here is social engineering: staff are receiving and voluntarily running malicious files. The root cause is human behavior, not a purely technical gap. User awareness training directly addresses why the attack succeeds - employees do not recognize the threat and

Question

A large, public university has recently been experiencing an increase in ransomware attacks against computers connected to its network. Security engineers have discovered various staff members receiving seemingly innocuous files in their email that are being run. Which of the following would BEST mitigate this attack method?

Options

  • AImproving organizations email filtering
  • BConducting user awareness training
  • CUpgrading endpoint anti-malware software
  • DEnabling application whitelisting

Explanation

The attack vector here is social engineering: staff are receiving and voluntarily running malicious files. The root cause is human behavior, not a purely technical gap. User awareness training directly addresses why the attack succeeds - employees do not recognize the threat and choose to execute the file. While email filtering (A) and updated anti-malware (C) add technical layers, 'seemingly innocuous' files may evade signature-based controls. Application whitelisting (D) would technically block unauthorized executables, but user awareness training is considered the best mitigation for socially engineered attacks because it eliminates the human vulnerability that all other controls depend on bypassing.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-003 Practice