CompTIACompTIA
CAS-005 · Question #367
CAS-005 Question #367: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-005 to reveal the answer and full explanation for question #367. The question stem and answer options stay visible for context.
Submitted by takeshi77· Mar 6, 2026Security Operations
Question
A security team receives alerts regarding impossible travel and possible brute-force attacks after normal business hours. After reviewing more logs, the team determines that specific users were targeted and attempts were made to transfer data to an unknown site. Which of the following should the team do to help mitigate these issues?
Options
- ACreate a firewall rule to prevent those users from accessing sensitive data.
- BRestrict uploading activity to only authorized sites.
- CEnable packet captures to continue to run for the source and destination related to the file
- DDisable login activity for those users after business hours.
Unlock CAS-005 to see the answer
You've previewed enough free CAS-005 questions. Unlock CAS-005 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.