An attacker has obtained the user ID and password of a datacenter's backup operator and has gained access to a production system. Which of the following would be the attacker's NEXT action?
A) Perform a passive reconnaissance of the network.
B) Initiate a confidential data exfiltration process.
C) Look for known vulnerabilities to escalate privileges.
D) Create an alternate user ID to maintain persistent access.
Correct Answer:
Verified
Q471: A healthcare company is revamping its IT
Q472: A security analyst is interested in setting
Q473: An organization is building a new customer
Q474: A technician is investigating a report of
Q475: A Chief Information Security Officer (CISO) for
Q477: A company is examining possible locations for
Q478: A company employee recently retired, and there
Q479: During a security audit of a company's
Q480: While monitoring the SIEM, a security analyst
Q481: Which of the following BEST describes the
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents