CompTIA SY0-601 Online Practice Questions and Exam Preparation

CompTIA SY0-601 Online Questions & Answers

• Question 771:

  An end user reports a computer has been acting slower than normal for a few weeks. During an investigation, an analyst determines the system is sending the user's email address and a ten-digit number to an IP address once a day. The only recent log entry regarding the user's computer is the following:

  

  Which of the following is the MOST likely cause of the issue?

  A. The end user purchased and installed a PUP from a web browser
  B. A bot on the computer is brute forcing passwords against a website
  C. A hacker is attempting to exfiltrate sensitive data
  D. Ransomware is communicating with a command-and-control server
  A. The end user purchased and installed a PUP from a web browser

• Question 772:

  Which of the following would be BEST for a technician to review to determine the total risk an organization can bear when assessing a "cloud-first" adoption strategy?

  A. Risk matrix
  B. Risk tolerance
  C. Risk register
  D. Risk appetite
  D. Risk appetite

  ---

  Explanation Explanation/Reference:Risk appetite is the total risk that an organization chooses to or is otherwise able to bear. This is the aggregate of all residual risk after selected countermeasures are in place. Risk tol- erance is the ability of an organization to absorb the losses associated with realized risks on an individual threat basis. Thus, risk appetite is the overall acceptance of the accumulation of individual risk tolerance issues.

• Question 773:

  DRAG DROP

  A security engineer is setting up passwordless authentication for the first time.

  INSTRUCTIONS

  Use the minimum set of commands to set this up and verify that it works. Commands cannot be reused.

  If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

  Select and Place:

  

  

  ---

  Explanation/Reference:

• Question 774:

  A security researcher has alerted an organization that its sensitive user data was found for sale on a website. Which of the following should the organization use to inform the affected parties?

  A. An incident response plan
  B. A communications plan
  C. A business continuity plan
  D. A disaster recovery plan
  A. An incident response plan

• Question 775:

  Which of the following in a forensic investigation should be priorities based on the order of volatility? (Select TWO).

  A. Page files
  B. Event logs
  C. RAM
  D. Cache
  E. Stored files
  F. HDD
  A. Page files
  D. Cache

• Question 776:

  Which of the following in the incident response process is the BEST approach to improve the speed of the identification phase?

  A. Activate verbose logging in all critical assets.
  B. Tune monitoring in order to reduce false positive rates.
  C. Redirect all events to multiple syslog servers.
  D. Increase the number of sensors present on the environment.
  B. Tune monitoring in order to reduce false positive rates.

  ---

  Explanation Explanation/Reference:Getting accurate report will allow analyst to pinpoint the problem fast. not A, cause there is no point focusing on Critical Asset when point of entry is likely some host. not C, cause having your logs distributed makes it harder to aggregate. not d, more sensor will produce more log for analyst to sift through.

• Question 777:

  Adding a value to the end of a password to create a different password hash is called:

  A. salting.
  B. key stretching.
  C. steganography.
  D. MD5 checksum.
  A. salting.

• Question 778:

  Accompany deployed a WiFi access point in a public area and wants to harden the configuration to make it more secure. After performing an assessment, an analyst identifies that the access point is configured to use WPA3, AES, WPS, and RADIUS. Which of the following should the analyst disable to enhance the access point security?

  A. WPA3
  B. AES
  C. RADIUS
  D. WPS
  D. WPS

  ---

  Wifi Protected Setup - Even though WPS offers this convenience, it is appallingly insecure. Wireless networks with WPS enabled are highly vulnerable to cybersecurity threats. Attackers can easily target the WPS function to steal network passwords, regardless of how complex the password is.

• Question 779:

  A large bank with two geographically dispersed data centers is concerned about major power disruptions at both locations. Every day each location experiences very brief outages that last for a few seconds. However, during the summer a high risk of intentional brownouts that last up to an hour exists, particularly at one of the locations near an industrial smelter.

  Which of the following is the BEST solution to reduce the risk of data loss?

  A. Dual supply
  B. Generator
  C. UPS
  D. POU
  E. Daily backups
  C. UPS

  ---

  The best solution to reduce the risk of data loss in this situation would be to use a UPS (uninterruptible power supply). A UPS is a device that provides a backup power source to critical systems and equipment in the event of a power outage or disruption. It works by providing a temporary power supply to the system using batteries, allowing the system to continue running until a permanent power source can be restored. This would be particularly useful in the case of brief power outages or brownouts, as it would allow the data centers to continue operating without experiencing any disruption or data loss. Other options, such as dual supply, generator, or point-of-use (POU) systems, may also be effective in certain situations, but a UPS is generally the most reliable and efficient option for protecting against power disruptions. Daily backups are important for protecting against data loss, but they alone may not be sufficient to prevent data loss in the event of a prolonged power outage or disruption.

• Question 780:

  A security analyst is investigating what appears to be unauthorized access to a corporate web application. The security analyst reviews the web server logs and finds the flowing entries:

  

  Which of the following password attacks is taking place?

  A. Dictionary
  B. Brute-force
  C. Rainbow table
  D. Spraying
  B. Brute-force