Exam 220-1002 topic 1 question 80 discussion

It's A OBJ-2.2: The only solution provided that could STOP this from reoccurring would be to use an anti-virus or anti-malware solution with heuristic analysis. The other options might be able to monitor and detect the issue, but not stop it from spreading. Heuristic analysis is a method employed by many computer anti-virus programs designed to detect previously unknown computer viruses, as well as new variants of viruses already in the wild. This is behavior-based detection and prevention, so it should be able to detect the issue in the scenario provided and stop it from spreading throughout the network. source: Jason Dion's practice exams.

UTM install at network level and not host level. The correct answer is A.

know what the definition of heuristic analysis is: Heuristic analysis is a method employed by many computer antivirus programs designed to detect previously unknown computer viruses, as well as new variants of viruses already in the "wild".Heuristic analysis is an expert based analysis that determines the susceptibility of a system towards particular threat/risk using various decision rules or weighing methods. MultiCriteria analysis is one of the means of weighing.

Unified Threat Management, a UTM is a networking device or software program that helps reduce the complexity of securing a network. It accomplishes this by including an anti-malware, content filter, firewall, intrusion detection, and spam protection into a single package.

A is correct. It would detect and combat the threat on the host before it can act or spread to other hosts. B, D, E all reference the purpose of detecting or monitoring so they are not preventing the threat i.e. a UTM that is only monitoring will not help prevent a breach. C is also not preventing the threat, only reducing the attack surface.

MeasureUp give the A correct answer

In answer "A" it says "Use an antivirus product" but in the question it says infected with "Malware".I guess antivirus products are not antimalware. viruses are part of malware but malware is not part of viruses. So i guess "D" should be correct answer.

[Question says “to PREVENT this (malware infections? or using elevated credentials?) from reoccurring”] C? -- Disallow the password caching of accounts in the administrators group (last line of defense) - prevents hackers obtaining elevated credentials. D? – Unified Threat Management devices provide integrated Intrusion PREVENTION [first line of defense]

i believe the answer should be C . The malware used admins accounts conditionals

To prevent it from occurring again, install a utm. What is heuristic analysis?

Not sure how much this matters but neither the word "heuristic" nor phrase "heuristic analysis" are found in the A+ prep book

D sound correct to me: Per google search : Unified threat management (UTM) provides multiple security features and services in a single device or service on the network, protecting users from security threats in a simplified way. UTM includes functions such as anti-virus, anti-spam, content filtering, and web filtering.

best answer is D