Palo_Alto_Networks
SECOPS-PRO · Question #73
SECOPS-PRO Question #73: Real Exam Question with Answer & Explanation
Sign in or unlock SECOPS-PRO to reveal the answer and full explanation for question #73. The question stem and answer options stay visible for context.
Question
A critical zero-day vulnerability is publicly disclosed in a widely used web server. Your organization's incident response plan dictates immediate action to identify potential exploitation attempts. You have Palo Alto Networks NGFWs, access to WildFire, and subscribe to Unit 42 threat intelligence. Furthermore, your team frequently uses VirusTotal for initial reconnaissance. To swiftly identify and contain potential exploitation attempts, which of the following combined strategies offers the best immediate response capability and long-term intelligence gathering?
Options
- AProactively blocking all traffic to the affected web server and submitting its logs to VirusTotal for
- BLeveraging Unit 42's rapid vulnerability research and exploit intelligence to identify specific exploit
- CDisabling the vulnerable web server entirely until a patch is released, and reviewing historical
- DMonitoring public forums and social media for mentions of the vulnerability and applying generic
- EFocusing solely on endpoint detection and response (EDR) alerts, as web server exploitation is
Unlock SECOPS-PRO to see the answer
You've previewed enough free SECOPS-PRO questions. Unlock SECOPS-PRO for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.