CompTIA
PT0-001 · Question #79
PT0-001 Question #79: Real Exam Question with Answer & Explanation
Sign in or unlock PT0-001 to reveal the answer and full explanation for question #79. The question stem and answer options stay visible for context.
Engagement management
Question
A penetration tester was able to retrieve the initial VPN user domain credentials by phishing a member of the IT department. Afterward, the penetration tester obtained hashes over the VPN and easily cracked them using a dictionary attack. Which of the following remediation steps should be recommended? (Select THREE)
Options
- AMandate all employees take security awareness training
- BImplement two-factor authentication for remote access
- CInstall an intrusion prevention system
- DIncrease password complexity requirements
- EInstall a security information event monitoring solution.
- FPrevent members of the IT department from interactively logging in as administrators
- GUpgrade the cipher suite used for the VPN solution
Unlock PT0-001 to see the answer
You've previewed enough free PT0-001 questions. Unlock PT0-001 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#remediation recommendations#phishing#VPN security#password policy