Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-49v10 All Questions

View all questions & answers for the 312-49v10 exam
Go to Exam

Exam 312-49v10 topic 1 question 828 discussion

Actual exam question from ECCouncil's 312-49v10
Question #: 828
Topic #: 1
[All 312-49v10 Questions]

During an investigation, a forensics analyst discovers an unusual increase in outbound network traffic, network traffic traversing on non-standard ports, and multiple failed login attempts on a host system. The analyst also found that certain programs were using these unusual ports, appearing to be legitimate. If these are the primary Indicators of Compromise, what should be the next immediate step in the investigation to contain the intrusion effectively?

  • A. Enforcing stringent password policies and re-authenticating all users to prevent further login anomalies
  • B. Examining the logs for repeated requests for the same file, indicating a possible exploit attempt
  • C. Analyzing Uniform Resource Locators for any signs of phishing or spamming activities
  • D. Conducting a deep dive into user-agent strings to determine if there is any spoofing of device OS and browser information
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by aqeel1506 at July 23, 2024, 8:38 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
aqeel1506
4 months ago
B. Examining the logs for repeated requests for the same file, indicating a possible exploit attempt. This step will help identify if the unusual traffic and port usage are associated with specific malicious activities or exploits, aiding in the containment and further investigation of the intrusion.
upvoted 1 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel