nerdexam
CompTIA

JK0-018 · Question #900

JK0-018 Question #900: Real Exam Question with Answer & Explanation

The correct answer is A. Wipe the storage, reinstall the OS from original media and restore the data from the last known. See the full explanation below for the reasoning.

Question

A server dedicated to the storage and processing of sensitive information was compromised with a rootkit and sensitive data was exfiltrated. Which of the following incident response procedures is best suited to restore the server?

Options

  • AWipe the storage, reinstall the OS from original media and restore the data from the last known
  • BKeep the data partition, restore the OS from the most current backup and run a full system antivirus scan.
  • CFormat the storage and reinstall both the OS and the data from the most current backup.
  • DErase the storage, reinstall the OS from most current backup and only restore the data that was

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full JK0-018 Practice