Free Access CompTIA.CAS-003.v2022-08-15.q472 Practice Test (Page 75)

Question 366

A government contractor was the victim of a malicious attack that resulted in the theft of sensitive information. An analyst's subsequent investigation of sensitive systems led to the following discoveries:
- There was no indication of the data owner's or user's accounts being
compromised.
- No database activity outside of previous baselines was discovered.
- All workstations and servers were fully patched for all known
vulnerabilities at the time of the attack.
- It was likely not an insider threat, as all employees passed
polygraph tests.
Given this scenario, which of the following is the MOST likely attack that occurred?

A.After successfully using a watering hole attack to deliver an exploit to a machine, which belongs to an employee of the contractor, an attacker gained access to a corporate laptop. With this access, the attacker then established a remote session over a VPN connection with the server hosting the database of sensitive information.

B.A shared workstation was physically accessible in a common area of the contractor's office space and was compromised by an attacker using a USB exploit, which resulted in gaining a local administrator account. Using the local administrator credentials, the attacker was able to move laterally to the server hosting the database with sensitive information.

C.An account, which belongs to an administrator of virtualization infrastructure, was compromised with a successful phishing attack. The attacker used these credentials to access the virtual machine manager and made a copy of the target virtual machine image. The attacker later accessed the image offline to obtain sensitive information.

D.The attacker harvested the hashed credentials of an account within the database administrators group after dumping the memory of a compromised machine. With these credentials, the attacker was able to access the database containing sensitive information directly.

Question 367

A penetration tester has been contracted to conduct a physical assessment of a site. Which of the following is the MOST plausible method of social engineering to be conducted during this engagement?

A.Simulating an illness while at a client location for a sales call and then recovering once listening devices are installed

B.Obtaining fake government credentials and impersonating law enforcement to gain access to a company facility

C.Randomly calling customer employees and posing as a help desk technician requiring user password to resolve issues

D.Posing as a copier service technician and indicating the equipment had "phoned home" to alert the technician for a service call

Question 368

A firm's Chief Executive Officer (CEO) is concerned that IT staff lacks the knowledge to identify complex vulnerabilities that may exist in a payment system being internally developed. The payment system being developed will be sold to a number of organizations and is in direct competition with another leading product.
The CEO highlighted that code base confidentiality is of critical importance to allow the company to exceed the competition in terms of the product's reliability, stability, and performance. Which of the following would provide the MOST thorough testing and satisfy the CEO's requirements?

A.Sign a MOU with a marketing firm to preserve the company reputation and use in-house resources for random testing.

B.Sign a BPA with a small software consulting firm and use the firm to perform Black box testing and address all findings.

C.Sign a NDA with a large security consulting firm and use the firm to perform Grey box testing and address all findings.

D.Use the most qualified and senior developers on the project to perform a variety of White box testing and code reviews.

Question 369

A company runs a well -attended, on-premises fitness club for its employees, about 200 of them each day. Employees want to sync center's login and attendance program with their smartphones. Human resources, which manages the contract for the fitness center, has asked the security architecture to help draft security and privacy requirements. Which of the following would BEST address these privacy concerns?

A.Implement containerization

B.Utilize geolocation/geofencing.

C.Block unauthorized domain bridging.

D.Use biometric authentication.

Question 370

The Chief Information Security Officer (CISO) has asked the security team to determine whether the organization is susceptible to a zero-day exploit utilized in the banking industry and whether attribution is possible. The CISO has asked what process would be utilized to gather the information, and then wants to apply signatureless controls to stop these kinds of attacks in the future. Which of the following are the MOST appropriate ordered steps to take to meet the CISO's request?

A.1. Perform the ongoing research of the best practices
2. Determine current vulnerabilities and threats
3. Apply Big Data techniques
4. Use antivirus control

B.1. Apply artificial intelligence algorithms for detection
2. Inform the CERT team
3. Research threat intelligence and potential adversaries
4. Utilize threat intelligence to apply Big Data techniques

C.1. Obtain the latest IOCs from the open source repositories
2. Perform a sweep across the network to identify positive matches
3. Sandbox any suspicious files
4. Notify the CERT team to apply a future proof threat model

D.1. Analyze the current threat intelligence
2. Utilize information sharing to obtain the latest industry IOCs
3. Perform a sweep across the network to identify positive matches
4. Apply machine learning algorithms

Other Version: 7489CompTIA.CAS-003.v2022-09-22.q535; 4321CompTIA.CAS-003.v2022-05-05.q206; 2991CompTIA.CAS-003.v2022-04-30.q141; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 105HP.HPE0-V27.v2025-09-11.q78; 119Oracle.1Z0-1057-23.v2025-09-10.q47; 153Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 133SAP.C-S4EWM-2023.v2025-09-08.q83; 167TheSecOpsGroup.CNSP.v2025-09-08.q20; 232CFAInstitute.ESG-Investing.v2025-09-08.q173; 214PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 154Salesforce.Data-Architect.v2025-09-05.q216; 148Adobe.AD0-E605.v2025-09-05.q50

Question 366

Question 367

Question 368

Question 369

Question 370

Download PDF File