CompTIACompTIA
SY0-701 · Question #446
SY0-701 Question #446: Real Exam Question with Answer & Explanation
The correct answer is D: Check the users table for new accounts. The logs show an SQL injection attack. The first step is to verify if new accounts have been created, indicating a successful injection.
Submitted by miguelv· Mar 6, 2026Security Operations
Question
While investigating a possible incident, a security analyst discovers the following log entries: Which of the following should the analyst do first?
Options
- AImplement a WAF
- BDisable the query .php script
- CBlock brute-force attempts on temporary users
- DCheck the users table for new accounts
Explanation
The logs show an SQL injection attack. The first step is to verify if new accounts have been created, indicating a successful injection.
Community Discussion
No community discussion yet for this question.