CAS-005 · Question #167
CAS-005 Question #167: Real Exam Question with Answer & Explanation
The correct answer is D: Implement a security awareness program in the organization.. A security awareness program is the best initial step to minimize threats like this in the future. It helps employees recognize phishing emails, which are a common method for malware infections, and prevents them from forwarding malicious emails. Educating users is key in reducin
Question
A security analyst detects a possible RAT infection on a computer in the internal network. After reviewing the details of the alert, the analyst identifies the initial vector of the attack was an email that was forwarded to multiple recipients in the same organizational unit. Which of the following should the analyst do first to minimize this type of threat in the future?
Options
- AMove from an anti-malware software to an EDR solution.
- BPerform a penetration test to detect technology gaps on the anti-spam solution.
- CConfigure an IPS solution in the internal network to mitigate infections.
- DImplement a security awareness program in the organization.
Explanation
A security awareness program is the best initial step to minimize threats like this in the future. It helps employees recognize phishing emails, which are a common method for malware infections, and prevents them from forwarding malicious emails. Educating users is key in reducing human error, which is often the starting point for attacks like RAT infections.
Community Discussion
No community discussion yet for this question.