During an investigation, a security analyst determines suspicious activity occurred during the night shift over the weekend. Further investigation reveals the activity was initiated from an internal IP going to an external website. Which of the following would be the MOST appropriate recommendation to prevent the activity from happening in the future?
A) An IPS signature modification for the specific IP addresses
B) An IDS signature modification for the specific IP addresses
C) A firewall rule that will block port 80 traffic
D) A firewall rule that will block traffic from the specific IP addresses
Correct Answer:
Verified
Q15: An information security analyst is reviewing backup
Q16: A compliance officer of a large organization
Q17: A security analyst reviews the following aggregated
Q18: An information security analyst observes anomalous behavior
Q19: A storage area network (SAN) was inadvertently
Q21: Because some clients have reported unauthorized activity
Q22: During a cyber incident, which of the
Q23: The security team at a large corporation
Q24: Which of the following sets of attributes
Q25: A development team is testing a new
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents