Free Access CompTIA.CAS-003.v2022-05-05.q206 Practice Test (Page 37)

Question 176

A security analyst is reviewing the following pseudo-output snippet after running the command less /tmp/file,tmp.

The information above was obtained from a public-facing website and used to identify military assets. Which of the following should be implemented to reduce the risk of a similar compromise?

A.Implement a digital watermarking solution

B.Install software to wipe data remnants on servers

C.Enforce proper input validation on mission-critical software

D.Deploy a solution to sanitize geotagging information

Question 177

The SOC has noticed an unusual volume of traffic coming from an open WiFi guest network that appears correlated with a broader network slowdown The network team is unavailable to capture traffic but logs from network services are available
* No users have authenticated recently through the guest network's captive portal
* DDoS mitigation systems are not alerting
* DNS resolver logs show some very long domain names
Which of the following is the BEST step for a security analyst to take next?

A.Search antivirus logs for evidence of a compromised company device

B.Block all outbound traffic from the guest network at the border firewall

C.Verify the passphrase on the guest network has not been changed.

D.Review access pent fogs to identify potential zombie services

Question 178

A company recently experienced a period of rapid growth, and it now needs to move to a more scalable cloud-based solution Historically. salespeople have maintained separate systems for information on competing customers to prevent the inadvertent disclosure of one customer's information to another customer Which of the following would be the BEST method to provide secure data separation?

A.Use a CRM tool to separate data stores

B.Migrate to a single-tenancy cloud infrastructure

C.Employ network segmentation to provide isolation among salespeople

D.Implement an open-source public cloud CRM

Question 179

The director of sales asked the development team for some small changes to increase the usability of an application used by the sales team. Prior security reviews of the code showed no significant vulnerabilities, and since the changes were small, they were given a peer review and then pushed to the live environment. Subsequent vulnerability scans now show numerous flaws that were not present in the previous versions of the code. Which of the following is an SDLC best practice that should have been followed?

A.Integration testing

B.Regression testing

C.Versioning

D.Continuous integration

Question 180

An organization implemented a secure boot on its most critical application servers which produce content and capability for other consuming servers A recent incident, however led the organization to implement a centralized attestation service for these critical servers. Which of the following MOST likely explains the nature of the incident that caused the organization to implement this remediation?

A.An attacker leveraged a heap overflow vulnerability in the OS

B.An attacker was able to overwrite an OS integrity measurement register

C.An attacker circumvented IEEE 802.1X network-level authentication requirements.

D.An attacker masqueraded as an internal DNS server

Other Version: 7454CompTIA.CAS-003.v2022-09-22.q535; 6488CompTIA.CAS-003.v2022-08-15.q472; 2972CompTIA.CAS-003.v2022-04-30.q141; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 148Salesforce.Data-Architect.v2025-09-05.q216; 143Adobe.AD0-E605.v2025-09-05.q50

Question 176

Question 177

Question 178

Question 179

Question 180

Download PDF File