Free Access CompTIA.CAS-004.v2023-08-04.q126 Practice Test (Page 17)

Question 76

A security analyst notices a number of SIEM events that show the following activity:

Which of the following response actions should the analyst take FIRST?

A.Disable powershell.exe on all Microsoft Windows endpoints.

B.Restart Microsoft Windows Defender.

C.Disable local administrator privileges on the endpoints.

D.Configure the forward proxy to block 40.90.23.154.

Question 77

Which of the following are risks associated with vendor lock-in? (Choose two.)

A.The client experiences increased interoperability.

B.The client receives a sufficient level of service.

C.The vendor can change product offerings.

D.The client can leverage a multicloud approach.

E.The client can seamlessly move data.

F.The client experiences decreased quality of service.

Question 78

An organization is planning for disaster recovery and continuity of operations.
INSTRUCTIONS
Review the following scenarios and instructions. Match each relevant finding to the affected host.
After associating scenario 3 with the appropriate host(s), click the host to select the appropriate corrective action for that finding.
Each finding may be used more than once.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Question 79

An IT administrator is reviewing all the servers in an organization and notices that a server is missing crucial practice against a recent exploit that could gain root access.
Which of the following describes the administrator's discovery?

A.A risk

B.A vulnerability

C.A threat

D.A breach

Question 80

A networking team asked a security administrator to enable Flash on its web browser. The networking team explained that an important legacy embedded system gathers SNMP information from various devices. The system can only be managed through a web browser running Flash. The embedded system will be replaced within the year but is still critical at the moment.
Which of the following should the security administrator do to mitigate the risk?

A.Isolate the management interface to a private VLAN where a legacy browser in a VM can be used as needed to manage the system.

B.Air gap the legacy system from the network and dedicate a laptop with an end-of-life OS on it to connect to the system via crossover cable for management.

C.Suggest that the networking team contact the original embedded system's vendor to get an update to the system that does not require Flash.

D.Explain to the networking team the reason Flash is no longer available and insist the team move up the timetable for replacement.

Other Version: 1961CompTIA.CAS-004.v2025-12-08.q667; 2322CompTIA.CAS-004.v2025-06-21.q202; 2138CompTIA.CAS-004.v2023-03-06.q93; 1703CompTIA.CAS-004.v2023-02-23.q88; 1429CompTIA.CAS-004.v2023-02-07.q68; 2490CompTIA.CAS-004.v2022-11-07.q113; 3041CompTIA.CAS-004.v2022-06-25.q79; 2008CompTIA.CAS-004.v2022-04-29.q42

Latest Upload: 202PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 299Nokia.4A0-113.v2026-05-01.q69; 256EC-COUNCIL.312-49v11.v2026-04-30.q214; 228Microsoft.MB-820.v2026-04-30.q101; 211Salesforce.MC-202.v2026-04-30.q57; 206BICSI.INSTC_V8.v2026-04-29.q53; 335NMLS.MLO.v2026-04-28.q82; 243NCARB.Project-Management.v2026-04-28.q27; 463EMC.D-AV-DY-23.v2026-04-27.q184; 1120ServiceNow.CSA.v2026-04-27.q483

Question 76

Question 77

Question 78

Question 79

Question 80

Download PDF File