• Home
  • Articles
  • [2024] 212-89 Dumps are Available for Instant Access [Q29-Q44]

[2024] 212-89 Dumps are Available for Instant Access [Q29-Q44]

Share

[2024] 212-89 Dumps are Available for Instant Access

Valid 212-89 Dumps for Helping Passing 212-89 Exam!

NEW QUESTION # 29
Insiders understand corporate business functions. What is the correct sequence of activities performed by
Insiders to damage company assets:

  • A. Gain privileged access, install malware then activate
  • B. Install malware, gain privileged access, then activate
  • C. Activate malware, gain privileged access then install malware
  • D. Gain privileged access, activate and install malware

Answer: A


NEW QUESTION # 30
Which of the following is an attack that occurs when a malicious program causes a user's browser to perform man unwanted action on a trusted site for which the user is currently authenticated?

  • A. Cross-site request forgery
  • B. Cross-site scripting
  • C. SQL injection
  • D. Insecure direct object references

Answer: A


NEW QUESTION # 31
Your company sells SaaS, and your company itself is hosted in the cloud (using it as a PaaS).
In case of a malware incident in your customer's database, who is responsible for eradicating the malicious software?

  • A. Your company
  • B. The customer
  • C. The PaaS provider
  • D. Building management

Answer: A


NEW QUESTION # 32
Identify a standard national process which establishes a set of activities, general tasks and a management structure to certify and accredit systems that will maintain the information assurance (IA) and security posture of a system or site.

  • A. NIACAP
  • B. NIAAAP
  • C. NIASAP
  • D. NIPACP

Answer: A


NEW QUESTION # 33
Dash wants to perform a DoS attack over 256 target URLs simultaneously.
Which of the following tools can Dash employ to achieve his objective?

  • A. HOIC
  • B. IDA Pro
  • C. Ollydbg
  • D. Open VAS

Answer: A


NEW QUESTION # 34
The IDS and IPS system logs indicating an unusual deviation from typical network traffic flows; this is called:

  • A. An Indication
  • B. A Reactive
  • C. A Proactive
  • D. A Precursor

Answer: A


NEW QUESTION # 35
XYZ Inc. was affected by a malware attack and James, being the incident handling and response (IH&R) team personnel handling the incident, found out that the root cause of the incident is a backdoor that has bypassed the security perimeter due to an existing vulnerability in the deployed firewall. James had contained the spread of the infection and removed the malware completely. Now the organization asked him to perform an incident impact assessment to identify the impact of the incident over the organization and he was also asked to prepare a detailed report of the incident.
Which of the following stages in IH&R process is James working on?

  • A. Evidence gathering and forensics analysis
  • B. Eradication
  • C. Notification
  • D. Post-incident activities

Answer: D


NEW QUESTION # 36
In which of the following phases of the incident handling and response (IH&R) process is the identified security incidents analyzed, validated, categorized, and prioritized?

  • A. Containment
  • B. Incident recording and assignment
  • C. Incident triage
  • D. Notification

Answer: C


NEW QUESTION # 37
Risk management consists of three processes, risk assessment, mitigation and evaluation. Risk assessment determines the extent of the potential threat and the risk associated with an IT system through its SDLC. How many primary steps does NIST's risk assessment methodology involve?

  • A. Nine
  • B. Twelve
  • C. Six
  • D. Four

Answer: A


NEW QUESTION # 38
Incidents are reported in order to:

  • A. Deal properly with legal issues
  • B. All the above
  • C. Provide stronger protection for systems and data
  • D. Be prepared for handling future incidents

Answer: B


NEW QUESTION # 39
Changing the web server contents, Accessing the workstation using a false ID and Copying sensitive data without authorization are examples of:

  • A. Malware attacks
  • B. DDoS attacks
  • C. Social Engineering attacks
  • D. Unauthorized access attacks

Answer: D


NEW QUESTION # 40
In a qualitative risk analysis, risk is calculated in terms of:

  • A. Probability of Loss X Loss
  • B. (Attack Success + Criticality ) -(Countermeasures)
  • C. (Countermeasures + Magnitude of Impact) - (Reports from prior risk assessments)
  • D. Asset criticality assessment - (Risks and Associated Risk Levels)

Answer: A


NEW QUESTION # 41
Which of the following is not the responsibility of first responders?

  • A. Protecting the crime scene
  • B. Preserving temporary and fragile evidence and then shutdown or reboot the victim's computer
  • C. Identifying the crime scene
  • D. Packaging and transporting the electronic evidence

Answer: B


NEW QUESTION # 42
Which of the following is the ECIH phase that involves removing or eliminating the root cause of an incident and closing all attack vectors to prevent similar incidents in the future?

  • A. Recovery
  • B. Eradication
  • C. Vulnerability management phase
  • D. Containment

Answer: B


NEW QUESTION # 43
identify the network security incident where intended or authorized users are prevented from using system, network, or applications by flooding the network with a high volume of traffic that consumes all existing network resources.

  • A. XSS attack
  • B. Denial-of-service
  • C. URL manipulation
  • D. SQL injection

Answer: B


NEW QUESTION # 44
......

Updated 212-89 Dumps Questions For EC-COUNCIL Exam: https://www.prepawaypdf.com/EC-COUNCIL/212-89-practice-exam-dumps.html

UPDATED EC-COUNCIL 212-89 Exam Questions & Answer: https://drive.google.com/open?id=1MY2cBA_0aKwYmL8NO1UxG4hJXVyaeVO6

Related Articles

more
EC-COUNCIL 212-89 Certification Practice Exam