Exam 350-701 topic 1 question 214 discussion

but also B. Phishing Cisco ESA (Email Security Appliance) and Cisco WSA (Web Security Appliance) are both security products that provide protection against a variety of network-based threats. However, ESA is designed specifically to protect against email-based threats such as spam, phishing and malware, while WSA is designed to protect against web-based threats such as SQL injection, buffer overflow, and DoS attacks. So, Cisco ESA can prevent phishing but Cisco WSA can't.

I'd go with B becasue the question is about "Preventable" meaning user should not get the email in the first place, that's ESA's job..

This should be B Cisco ESA (Email Security Appliance) - Cisco WSA (Web Security Appliance) has no business with emails

Answer b

from https://www.cisco.com/c/en/us/support/docs/security/web-security-appliance/117952-qanda-wsa-00.html WSA can prevent phishing attack. true answer is D.

D - "Cisco ESA Bounce Verification to avoid the Denial of Service DOS of your email infrastructure." https://community.cisco.com/t5/security-blogs/cisco-esa-bounce-verification-to-avoid-the-denial-of-service-dos/ba-p/4431574 Not B: WSA - "Web reputation filtering protects client devices from visiting potentially harmful websites that contain malware or phishing links."

b. Phishing. when an email came in, phishing already happens and WSA did not prevented it. Its the ESA which could prevent it from coming in. What WSA can prevent is when user clicks the link on the email, but that its not that phishing attack. the phishing attack starts when user received the phishing in his inbox.

WSA PROTECT against pishing!! ESA protect againsd DOS because have RATE LIMIT configuration for connections https://www.cisco.com/c/en/us/support/docs/security/web-security-appliance/117952-qanda-wsa-00.html : Cisco Web Security Appliance (WSA) provides the industry's most comprehensive gateway defense against spyware and web-based malware. This includes everything from Adware (which causes the most supportability issues and consumes significant network resources) to more malicious threats such as Trojans, Browser Hijackers, Browser helper Objects, Phishing, Pharming, System Monitors, Keyloggers, Worms, etc.

Phishing

The Aswer is the B

Question Does the Cisco Web Security Appliance (WSA) provide Malware/Spyware protection? Cisco Web Security Appliance (WSA) provides the industry's most comprehensive gateway defense against spyware and web-based malware. This includes everything from Adware (which causes the most supportability issues and consumes significant network resources) to more malicious threats such as Trojans, Browser Hijackers, Browser helper Objects, Phhttps://www.examtopics.com/discussions/cisco/view/64650-exam-350-701-topic-1-question-214-discussion/#ishing, Pharming, System Monitors, Keyloggers, Worms, etc.

https://www.linkedin.com/pulse/you-using-cisco-wsa-security-appliance-vulnerable-dos-cyber-defence/

The ESA is a Transfer Agent therefore will limit mail flow to the actual email server. Therefore stopping a DoS attack.

What about answer A A. SQL injection: Cisco ESA can prevent SQL injection attacks by inspecting the payload of the incoming email messages and identifying any SQL injection attempts. However, Cisco WSA is focused on web traffic and may not have the same level of protection against this type of attack. B. Phishing: Both Cisco ESA and Cisco WSA can prevent phishing attacks by using reputation-based filtering, SSL inspection, and anti-phishing capabilities. C. Buffer overflow: Cisco ESA can prevent buffer overflow attacks by inspecting the payload of incoming email messages and identifying any buffer overflow attempts. However, Cisco WSA is focused on web traffic and may not have the same level of protection against this type of attack. D. DoS: Both Cisco ESA and Cisco WSA can prevent DoS attacks by using rate-limiting, access controls, and other security measures to prevent the attack from overwhelming the system.

I believe B is the answer.

B is correct

B is correct. ESA is email appliance, not firewall.