ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 189 discussion

Actual exam question from CompTIA's CS0-003
Question #: 189
Topic #: 1
[All CS0-003 Questions]

A payroll department employee was the target of a phishing attack in which an attacker impersonated a department director and requested that direct deposit information be updated to a new account. Afterward, a deposit was made into the unauthorized account. Which of the following is one of the first actions the incident response team should take when they receive notification of the attack?

  • A. Scan the employee's computer with virus and malware tools
  • B. Review the actions taken by the employee and the email related to the event
  • C. Contact human resources and recommend the termination of the employee
  • D. Assign security awareness training to the employee involved in the incident
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by spamsoc at March 5, 2024, 5:21 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
jspecht
Highly Voted 6 months, 1 week ago
Selected Answer: B
There's no indication malware was involved here so no need to scan anything. Decisions about termination or training can be made after the facts of the incident are fully understood. The only reasonable answer here is B.
upvoted 8 times
...
leesuh
Most Recent 1 week, 2 days ago
Selected Answer: B
B first then D for future Post Incident review
upvoted 1 times
...
spamsoc
6 months, 1 week ago
When responding to a phishing attack or an incident involving a compromised employee account, one of the first actions the incident response team should take is to review the actions taken by the employee and the email related to the event. This involves investigating the incident to understand the scope, timeline, and details of the compromise.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago