WGU WGU-D488 Online Practice Questions and Exam Preparation

WGU WGU-D488 Online Questions & Answers

• Question 161:

  The cybersecurity analyst at a hardware company conducted a vulnerability assessment to identify potential security risks to the organization and discovered multiple vulnerabilities on the company's webpage. The analyst then provided the results to the Chief Information Security Officer (CISO), who then decided to decommission the website and create a new page with increased security controls.

  A. Transfer
  B. Accept
  C. Avoid
  D. Mitigate
  C. Avoid

• Question 162:

  A corporate website is currently being redesigned, which leaves it vulnerable to security threats. Management does not want to provide an attacker with any information about the web server. Which strategy should be used to prevent an attacker from gaining unauthorized information?

  A. Obfuscating error messages on the site or within the Uniform Resource Locator (URL)
  B. Enabling Hypertext Transfer Protocol Secure (HTTPS) over Domain Name Service (DNS)
  C. Using HTTPS for all page and content requests
  D. Becoming PCI-DSS compliant and certified
  A. Obfuscating error messages on the site or within the Uniform Resource Locator (URL)

• Question 163:

  A company is concerned about the potential risks associated with unauthorized modifications to the Basic Input/Output System (BIOS) firmware on its servers. The company has decided to implement hardening techniques and endpoint security controls to mitigate the risk.

  Which technique will prevent unauthorized modifications to the BIOS firmware on a server?

  A. Using an intrusion detection system to detect and prevent attacks
  B. BIOS protection
  C. BIOS monitoring
  D. Conducting regular backups of the server's data
  B. BIOS protection

• Question 164:

  A large technology company has discovered a known vulnerability in its network infrastructure.The infrastructure contains a number of retired assets that are no longer receiving security updates, which could potentially be exploited by attackers to compromise the network. The company has decided to implement hardening techniques and endpoint security controls to mitigate the risk.

  Which hardening technique will meet the needs of this company?

  A. Conducting regular vulnerability scans to identify potential weaknesses
  B. Implementing intrusion detection and prevention systems (IDPS)
  C. Enforcing strict access control policies for all network devices
  D. Removing all end-of-life devices from the network
  D. Removing all end-of-life devices from the network

• Question 165:

  Which risk management strategy will ensure the secure configuration and deployment of a new online banking system and help prevent credit card fraud?

  A. Implementation of real-time transaction monitoring
  B. Implementation of a strict firewall policy to restrict access to the system's server
  C. Configuration of the system to disable all email services on all workstations
  D. Use of regular system backups to an off-site location
  A. Implementation of real-time transaction monitoring

• Question 166:

  The DevSecOps team for an organization manages a continuous integration and continuous deployment (CI/CD) pipeline for a three-tier web application. Management has asked the team to perform a series of comprehensive post-deployment tests to make sure that all of the components of the application can interact and function properly.

  A. Dynamic code analysis
  B. Integration testing
  C. Static code analysis
  D. Package scanning
  B. Integration testing

• Question 167:

  A company has discovered a vulnerability in its lightweight directory access protocol (LDAP) implementation, which could potentially allow unauthorized access to sensitive information. The company has decided to implement risk mitigation strategies to reduce the risk associated with this vulnerability.

  Which risk mitigation strategy will meet the needs of the company?

  A. Conducting regular security awareness training for employees to prevent social engineering attacks targeting LDAP credentials
  B. Regularly backing up data stored in the LDAP server to prevent data loss in the event of a breach
  C. Implementing intrusion detection and prevention systems (IDPS) to monitor for suspicious activities and potential LDAP attacks
  D. Implementing strong authentication mechanisms and encryption protocols to secure communication between the LDAP server and clients
  D. Implementing strong authentication mechanisms and encryption protocols to secure communication between the LDAP server and clients

• Question 168:

  A healthcare organization is required to comply with the Health Insurance Portability and Accountability Act (HIPAA), which regulates the privacy and security of personal health information. The organization uses simple network management protocol (SNMP) to manage and monitor its network devices.

  Which security control will protect the confidentiality of network device information within this organization?

  A. Access controls
  B. Network segmentation
  C. Encryption
  D. Security monitoring
  C. Encryption

• Question 169:

  What allows a user to query information from an online database with a web application without revealing what they are viewing?

  A. Secure function evaluation (SFE)
  B. Private function evaluation (PFE)
  C. Homomorphic encryption
  D. Private information retrieval (PIR)
  D. Private information retrieval (PIR)

• Question 170:

  An IT organization recently implemented a hybrid cloud deployment. The security team must be able to correlate event data combined from different sources in a central location. What is the best solution?

  A. File integrity monitoring (FIM)
  B. Data loss prevention (DLP)
  C. Intrusion detection system (IDS)
  D. Security information and event management (SIEM)
  D. Security information and event management (SIEM)