CompTIA SY0-601 Online Practice Questions and Exam Preparation

CompTIA SY0-601 Online Questions & Answers

• Question 261:

  The spread of misinformation surrounding the outbreak of a novel virus on election day led to eligible voters choosing not to take the risk of going the polls. This is an example of:

  A. prepending
  B. an influence campaign.
  C. A watering-hole attack
  D. intimidation
  E. information elicitation.
  B. an influence campaign.

  ---

  Explanation Explanation/Reference:From Chapter 1 Social Engineering Techniques Influence Campaigns Influence campaigns involve the use of collected information and selective publication of material to key individuals in an attempt to alter perceptions and change people's minds on a topic. One can engage in an influence campaign against a single person, but the effect is limited. Influence campaigns are even more powerful when used in conjunction with social media to spread influence through influencer propagation. Influencers are people who have large followings of people who read what they post, and in many cases act in accordance or agreement. This results in an amplifying mechanism, where single pieces of disinformation can be rapidly spread and build a following across the Internet.

• Question 262:

  A systems administrator needs to install the same X.509 certificate on multiple servers. Which of the following should the administrator use?

  A. Key escrow
  B. A self-signed certificate
  C. Certificate chaining
  D. An extended validation certificate
  B. A self-signed certificate

  ---

  Explanation Explanation/Reference:Internal certificates don't need to be signed by a public CA ? Your company is the only one going to use it 1. No need to purchase trust for devices that already trust you 2. Build your own CA ?Issue your own certificates signed by your own CA 3. Install the CA certificate/trusted chain on all devices 4. They'll now trust any certificates signed by your internal CA 5. Works exactly like a certificate you purchased

• Question 263:

  A security engineer is installing a WF io protect the company's website from malicious wed requests over SSL, Which of the following is needed io meet the objective?

  A. A reverse proxy
  B. A decryption certificate
  C. A split-tunnel VPN
  D. Load-balanced servers
  B. A decryption certificate

  ---

  WAF can only block abnormal traffic by filtering the plaintext data.

• Question 264:

  During a recent security incident at a multinational corporation a security analyst found the following logs for an account called user:

  

  Which of the following account policies would BEST prevent attackers from logging in as user?

  A. Impossible travel time
  B. Geofencing
  C. Time-based logins
  D. Geolocation
  A. Impossible travel time

  ---

  Explanation Explanation/Reference:Impossible Travel is a calculation made by comparing a user's last known location to their current location, then assessing whether the trip is likely or even possible in the time that elapsed between the two measurements. It can calculate the time it would take to travel from New York to Los Angeles and see it would be impossible to accomplish this within a minute.

• Question 265:

  An employee, receives an email stating he won the lottery. The email includes a link that requests a name, mobile phone number, address, and date of birth be provided to confirm employee's identity before sending him the prize. Which of the following BEST describes this type of email?

  A. Spear phishing
  B. Whaling
  C. Phishing
  D. Vishing
  C. Phishing

• Question 266:

  Accompany has a flat network that is deployed in the cloud. Security policy states that all production and development servers must be segmented. Which of the following should be used to design the network to meet the security requirements?

  A. CASB
  B. VPC
  C. Perimeter network
  D. WAF
  B. VPC

  ---

  Explanation Explanation/Reference:"Security policy states that all production and development servers must be segmented" which can be achieved by using a VPC

• Question 267:

  A desktop support technician recently installed a new document-scanning software program on a computer. However, when the end user tried to launch the program, it did not respond. Which of the following is MOST likely the cause?

  A. A new firewal rule is needed to access the application.
  B. The system was quarantined for missing software updates.
  C. The software was not added to the application whitelist.
  D. The system was isolated from the network due to infected software
  C. The software was not added to the application whitelist.

  ---

  Firewall is irrelevant to the question. Firewall rules determine if traffic will go trough or get blocked. The firewall has no access or control over processes or applications on the system. The issue is that the application is not whitelisted, which prevents it from booting.

• Question 268:

  An employee who is using a mobile device for work, is required to use a fingerprint to unlock the device. Which of the following is this an example of?

  A. Something you know
  B. Something you are
  C. Something you have
  D. Somewhere you are
  B. Something you are

• Question 269:

  HOTSPOT

  You received the output of a recent vulnerability assessment. Review the assessment and scan output and determine the appropriate remedialion(s} 'or choose devices.

  Remediation options may be selected multiple times, and some devices may require more than one remediation.

  Hot Area:

  

  

  ---

  Explanation/Reference:

• Question 270:

  An organization relies on third-party video conferencing to conduct daily business. Recent security changes now require all remote workers to utilize a VPN to corporate resources. Which of the following would BEST maintain high-quality video conferencing while minimizing latency when connected to the VPN?

  A. Using geographic diversity to have VPN terminators closer to end users
  B. Utilizing split tunneling so only traffic for corporate resources is encrypted
  C. Purchasing higher-bandwidth connections to meet the increased demand
  D. Configuring QoS properly on the VPN accelerators
  B. Utilizing split tunneling so only traffic for corporate resources is encrypted

  ---

  https://support.zoom.us/hc/en-us/articles/360053610731-VPN-Split-Tunneling-Recommendations