ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-710 All Questions

View all questions & answers for the 300-710 exam
Go to Exam

Exam 300-710 topic 1 question 341 discussion

Actual exam question from Cisco's 300-710
Question #: 341
Topic #: 1
[All 300-710 Questions]

A security engineer sees an alert on Cisco Secure Endpoint console showing a malicious verdict for a file with the SHA-256 hash 0488537078abcdef048853abcdef048853abcdef048853abcdef048853abcdef048853. Which step will mitigate this threat?

  • A. Add the hash to network block list.
  • B. Quarantine the file on endpoint.
  • C. Add the hash to custom detection list.
  • D. Enable firewall on infected endpoint.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by artilling at Jan. 10, 2025, 6:33 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
artilling
5 days, 8 hours ago
Selected Answer: C
I think "C". Custom Detection List > Simple 1. On the Add SHA-256 option, paste the SHA-256 code previously collected from the specific file you want to block 2. Once the Simple Custom Detection list is generated, navigate to Management > Policies and choose the policy where you want to apply the list previously created https://www.cisco.com/c/en/us/support/docs/security/amp-endpoints/215176-configure-a-simple-custom-detection-list.html
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago