Free Access CompTIA.CAS-003.v2022-04-30.q141 Practice Test (Page 18)

Question 81

A large bank deployed a DLP solution to detect and block customer and credit card data from leaving the organization via email.
A disgruntled employee was able to successfully exfiltrate data through the corporate email gateway by embedding a word processing document containing sensitive data as an object in a CAD file.
Which of the following BEST explains why it was not detected and blocked by the DLP solution?
(Select TWO).

A.The mail client used to send the email is not compatible with the DLP product.

B.The process of embedding an object obfuscates the data.

C.The embedding of objects in other documents enables document encryption by default.

D.The product does not understand how to decode embedded objects.

E.The DLP product cannot scan multiple email attachments at the same time.

Question 82

Several recent ransomware outbreaks at a company have cost a significant amount of lost revenue. The security team needs to find a technical control mechanism that will meet the following requirements and aid in preventing these outbreaks:
- Stop malicious software that does not match a signature
- Report on instances of suspicious behavior
- Protect from previously unknown threats
- Augment existing security capabilities
Which of the following tools would BEST meet these requirements?

A.Host-based firewall

B.EDR

C.HIPS

D.Patch management

Question 83

A networking administrator was recently promoted to security administrator in an organization that handles highly sensitive data. The Chief Information Security Officer (CISO) has just asked for all IT security personnel to review a zero-day vulnerability and exploit for specific application servers to help mitigate the organization's exposure to that risk. Which of the following should the new security administrator review to gain more information? (Choose three.)

A.CVE database

B.Secure routing metrics

C.Recent security industry conferences

D.Known vendor threat models

E.Security vendor pages

F.NetFlow analytics

G.Server's vendor documentation

H.Verified security forums

Question 84

A forensic analyst receives a hard drive containing malware quarantined by the antivirus application. After creating an image and determining the directory location of the malware file, which of the following helps to determine when the system became infected?

A.The malware file's modify, access, change time properties.

B.The timeline analysis of the file system.

C.The time stamp of the malware in the swap file.

D.The date/time stamp of the malware detection in the antivirus logs.

Question 85

An assessor identifies automated methods for identifying security control compliance through validating sensors at the endpoint and at Tier 2. Which of the following practices satisfy continuous monitoring of authorized information systems?

A.Independent verification and validation

B.Security test and evaluation

C.Risk assessment

D.Ongoing authorization

Premium Bundle

Newest CAS-003 Exam PDF Dumps shared by BraindumpsPass.com for Helping Passing CAS-003 Exam! BraindumpsPass.com now offer the updated CAS-003 exam dumps, the BraindumpsPass.com CAS-003 exam questions have been updated and answers have been corrected get the latest BraindumpsPass.com CAS-003 pdf dumps with Exam Engine here:

Access CAS-003 Premium Version

(683 Q&As Dumps, 40%OFF Special Discount: Exam-Tests)

Other Version: 7485CompTIA.CAS-003.v2022-09-22.q535; 6511CompTIA.CAS-003.v2022-08-15.q472; 4321CompTIA.CAS-003.v2022-05-05.q206; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 153Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 166TheSecOpsGroup.CNSP.v2025-09-08.q20; 229CFAInstitute.ESG-Investing.v2025-09-08.q173; 176PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 152Salesforce.Data-Architect.v2025-09-05.q216; 148Adobe.AD0-E605.v2025-09-05.q50