ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 78 discussion

Actual exam question from CompTIA's CAS-004
Question #: 78
Topic #: 1
[All CAS-004 Questions]

A company has hired a security architect to address several service outages on the endpoints due to new malware. The Chief Executive Officer's laptop was impacted while working from home. The goal is to prevent further endpoint disruption. The edge network is protected by a web proxy.
Which of the following solutions should the security architect recommend?

  • A. Replace the current antivirus with an EDR solution.
  • B. Remove the web proxy and install a UTM appliance.
  • C. Implement a deny list feature on the endpoints.
  • D. Add a firewall module on the current antivirus solution.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by patinho777 at Feb. 9, 2022, 4:17 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
patinho777
Highly Voted 3 years, 2 months ago
Selected Answer: B
I think that a UTM appliance is the best solution
upvoted 5 times
...
RevZig67
Highly Voted 2 years, 11 months ago
Selected Answer: A
Yea, get an EDR solution.
upvoted 5 times
...
Chiaretta
Most Recent 3 months ago
Selected Answer: A
EDR - "The goal is to prevent further endpoint disruption."
upvoted 1 times
...
salmonIsDecent
6 months, 3 weeks ago
Selected Answer: A
I hate this question because of how they can trick you throwing in the last sentence: "The edge network is protected by a web proxy." I was thinking in my head why would it be an antivirus solution and leaning towards answer: C. But the key to cracking this problem was looking at it and seeing the goal in the stated question was to prevent further endpoint disruption due to new malware. An End Point Detection Response goes beyond the traditional AV by providing RT monitoring, behavioral analysis and ability to detect and respond to advanced threats including zero-day malware and fileless attacks.
upvoted 2 times
...
23169fd
9 months, 3 weeks ago
Selected Answer: A
Advanced Threat Detection: EDR solutions offer more advanced capabilities than traditional antivirus software. They can detect and respond to a wider range of threats, including new and unknown malware. Real-Time Monitoring: EDR provides real-time monitoring and analysis of endpoint activities, allowing for quicker detection and response to threats. Behavioral Analysis: EDR tools use behavioral analysis to identify suspicious activities, which can help in detecting malware that might not be caught by signature-based methods. Incident Response: EDR solutions often include tools for incident response, helping to contain and remediate threats more effectively.
upvoted 1 times
...
cyspec
10 months ago
Selected Answer: B
"service outages", "further endpoint disruption". Endpoints can refer to servers.
upvoted 1 times
...
BiteSize
1 year, 9 months ago
Selected Answer: A
EDR is superior to a UTM because that means there is a post-breach endpoint security platform that is hosted in the cloud. Perfect for "at home" Source: Verifying each answer against Chat GPT, my experience, other test banks, a written book, and weighing in the discussion from all users to create a 100% accurate guide for myself before I take the exam. (It isn't easy because of the time needed, but it is doing my diligence)
upvoted 4 times
...
ts260
2 years, 7 months ago
Selected Answer: A
"Working from home" indicates that it needs EDR
upvoted 3 times
...
dangerelchulo
2 years, 7 months ago
Selected Answer: A
(EDR) is a proactive endpoint security approach designed to supplement existing defenses. This advanced endpoint approach shifts security from a reactive threat approach to one that can detect and prevent threats before they reach the organization
upvoted 3 times
...
dgfhyjfghfgfkfhd
3 years ago
Selected Answer: A
https://www.malwarebytes.com/cybersecurity/business/what-is-edr
upvoted 5 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago