ExamTopics Logo
Mail Us[email protected]
Menu
Palo-Alto-Networks Discussions
exam questions

Exam PCDRA All Questions

View all questions & answers for the PCDRA exam
Go to Exam

Exam PCDRA topic 1 question 90 discussion

Actual exam question from Palo Alto Networks's PCDRA
Question #: 90
Topic #: 1
[All PCDRA Questions]

As a Malware Analyst working with Cortex XDR you notice an alert suggesting that there was a prevented attempt to open a malicious Word document. You learn from the WildFire report and AutoFocus that this document is known to have been used in Phishing campaigns since 2018. What steps can you take to ensure that the same document is not opened by other users in your organization protected by the Cortex XDR agent?

  • A. Enable DLL Protection on all endpoints but there might be some false positives.
  • B. No step is required because Cortex shares IOCs with our fellow Cyber Threat Alliance members.
  • C. No step is required because the malicious document is already stopped.
  • D. Install latest content updates to recognize and prevent the activity.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by danups at Sept. 16, 2024, 9:55 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
danups
4 months ago
Selected Answer: D
If you have enabled BTP, then installing the latest content updates will led to have the most updated rules built by PANW to prevent suspicious behaviors.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago