CompTIACompTIA
SY0-701 · Question #220
SY0-701 Question #220: Real Exam Question with Answer & Explanation
Sign in or unlock SY0-701 to reveal the answer and full explanation for question #220. The question stem and answer options stay visible for context.
Submitted by ricky.ec· Mar 6, 2026Security Operations
Question
A security analyst is investigating an alert that was produced by endpoint protection software. The analyst determines this event was a false positive triggered by an employee who attempted to download a file. Which of the following is the most likely reason the download was blocked?
Options
- AA misconfiguration in the endpoint protection software
- BA zero-day vulnerability in the file
- CA supply chain attack on the endpoint protection vendor
- DIncorrect file permissions
Unlock SY0-701 to see the answer
You've previewed enough free SY0-701 questions. Unlock SY0-701 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.