Free Access CompTIA.CS0-002.v2025-03-13.q112 Practice Test (Page 11)

Question 46

A security analyst inspects the header of an email that is presumed to be malicious and sees the following:

Which of the following is inconsistent with the rest of the header and should be treated as suspicious?

A.The destination email server

B.The subject line

C.The sender's email address

D.The use of a TLS cipher

Question 47

A forensics investigator is analyzing a compromised workstation. The investigator has cloned the hard drive and needs to verify that a bit-level image copy of a hard drive is an exact clone of the original hard drive that was collected as evidence. Which of the following should the investigator do?

A.Insert the hard drive on a test computer and boot the computer.

B.Record the serial numbers of both hard drives.

C.Compare the file-directory "sting of both hard drives.

D.Run a hash against the source and the destination.

Question 48

A social media company is planning an acquisition. Prior to the purchase, the Chief Security Officer (CSO) would like a full report to gain a better understanding of the prospective company's cybersecurity posture and to identify risks in the supply chain. Which of the following will best support the CSO's objective?

A.Third-party assessment

B.Memorandum of understanding

C.Non-disclosure agreement

D.Software source authenticity

Question 49

A security analyst is reviewing the network security monitoring logs listed below:

Which of the following is the analyst MOST likely observing? (Select TWO).

A.10.1.1.129 sent non-malicious requests, and the alert is a false positive.

B.10.1.1.128 sent malicious requests, and the alert is a false positive.

C.10.1.1.128 sent potential malicious traffic to the web server.

D.10.1.1.129 sent potential malicious requests to the web server.

E.10.1.1 .129 successfully exploited a vulnerability on the web server.

Question 50

A SIEM analyst noticed a spike in activities from the guest wireless network to several electronic health record (EHR) systems. After further analysis, the analyst discovered that a large volume of data has been uploaded to a cloud provider in the last six months. Which of the following actions should the analyst do FIRST?

A.Activate the incident response plan

B.Notify the Chief Privacy Officer (CPO)

C.Put an ACL on the gateway router

D.Contact the Office of Civil Rights (OCR) to report the breach

Other Version: 2794CompTIA.CS0-002.v2024-10-25.q354; 644CompTIA.CS0-002.v2024-09-17.q264; 883CuramSoftware.CS0-002.v2024-02-05.q218; 2352CuramSoftware.CS0-002.v2023-02-13.q163; 4396CuramSoftware.CS0-002.v2022-08-26.q256; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 14454CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 128Fortinet.NSE8_812.v2025-10-22.q86; 139HP.HPE2-B04.v2025-10-21.q38; 116Oracle.1Z0-1160-1.v2025-10-21.q18; 131GitHub.GitHub-Advanced-Security.v2025-10-21.q27; 134Oracle.1Z0-084.v2025-10-21.q31; 321CuramSoftware.CS0-003.v2025-10-18.q211; 197GAQM.Databricks-Certified-Data-Engineer-Associate.v2025-10-18.q113; 199SAP.C-C4HCX-2405.v2025-10-17.q85; 264Huawei.H12-831_V1.0.v2025-10-16.q126; 191SAP.C-THR70-2411.v2025-10-16.q55

Question 46

Question 47

Question 48

Question 49

Question 50

Download PDF File