CS0-003 · Question #273
CS0-003 Question #273: Real Exam Question with Answer & Explanation
Sign in or unlock CS0-003 to reveal the answer and full explanation for question #273. The question stem and answer options stay visible for context.
Question
Two employees in the finance department installed a freeware application that contained embedded malware. The network is robustly segmented based on areas of responsibility. These computers had critical sensitive information stored locally that needs to be recovered. The department manager advised all department employees to turn off their computers until the security team could be contacted about the issue. Which of the following is the first step the incident response staff members should take when they arrive?
Options
- ATurn on all systems, scan for infection, and back up data to a USB storage device.
- BIdentify and remove the software installed on the impacted systems in the department.
- CExplain that malware cannot truly be removed and then reimage the devices.
- DLog on to the impacted systems with an administrator account that has privileges to perform
- ESegment the entire department from the network and review each computer offline.
Unlock CS0-003 to see the answer
You've previewed enough free CS0-003 questions. Unlock CS0-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.