Exam 220-1102 topic 1 question 9 discussion

The use of the word "purportedly" makes me think this is a fraudulent website. At the very least, we aren't sure and the question asks what should the tech do FIRST. I would choose D.

D - Better to exit the website first and then investigate.

The first step the technician should take is to instruct the CFO to exit the browser immediately. Option D is the correct answer. The error message suggests that the link the CFO clicked on may have led to a malicious website or a phishing attempt. In such cases, it is important to immediately close the browser to prevent any potential harm to the computer or the organization's network. After the browser is closed, the technician can proceed with further investigation and steps to address the issue, such as updating the browser's Certificate Revocation Lists (CRLs) (Option A) to ensure that the browser can detect and block certificates that have been revoked by the certificate authority. However, this step should only be taken after the immediate threat has been mitigated.

The correct answer is D because the question asks what would be the first thing you should do. The link is from an e-mail. which could potentially be a phising attack. And imagine this, you are the CFO which means you've been opening your organisations website many times in your browser without any problems. Then one day you get a link in your e-mail which seems to link to your org's bank but this time your browser flags it. Isin't that suspicious? The first thing to do would be to leave the site.

Its D. Looks like an almost textbook example of Whaling

After clicking on a link in an email ? Answer is probably D... if someone get this question on the exam can you please update here my comment pls

After clicking on a link in an email ? Answer is probably D... if someone get this question on the exam can you please update here my comment pls

If there is a lock & a https:// address then it is a legitimate site & the certificates just need to be installed or updated.

I selected "D" for the reason it being a email with a link not a website that a Certificate was expired

D, no doubt.

Is specified that the link is genuine. Happens often certificates get relocated due to many different issues. Updating the CRL will make the link certified again or make it fail in case is not genuine

Instructing CFO to exit the browser is the best option

Correct is D. Instruct the CFO to exit the browser.

CFO, bank, purportedly, problem with website's security certificate. These info are enough

CRL stands for Certificate Revocation List, and in this scenario probably needs to be updated so it can trust the website. (Certificates expire)