Refer to the exhibit. What is the potential threat identified in this Stealthwatch dashboard?
Question 112
Which security technology allows only a set of pre-approved applications to run on a system?
Question 113
An investigator is examining a copy of an ISO file that is stored in CDFS format. What type of evidence is this file?
Question 114
Which piece of information is needed for attribution in an investigation?
Question 115
What does cyber attribution identify in an investigation?
Question 116
A security engineer has a video of a suspect entering a data center that was captured on the same day that files in the same data center were transferred to a competitor. Which type of evidence is this?
Question 117
DRAG DROP - Drag and drop the type of evidence from the left onto the description of that evidence on the right. Select and Place:
Question 118
Refer to the exhibit. An analyst received this alert from the Cisco ASA device, and numerous activity logs were produced. How should this type of evidence be categorized?
Question 119
Refer to the exhibit. Which piece of information is needed to search for additional downloads of this file by other hosts?
Question 120
An organization's security team has detected network spikes coming from the internal network. An investigation has concluded that the spike in traffic was from intensive network scanning. How should the analyst collect the traffic to isolate the suspicious host?
