Free Access CuramSoftware.CS0-002.v2022-08-26.q256 Practice Test (Page 29)

Question 136

An employee in the billing department accidentally sent a spreadsheet containing payment card data to a recipient outside the organization.
The employee intended to send the spreadsheet to an internal staff member with a similar name and was unaware of the mistake until the recipient replied to the message.
In addition to retraining the employee, which of the following would prevent this from happening in the future?

A.Set the outgoing mail filter to strip spreadsheet attachments from all messages.

B.Configure the outgoing mail filter to allow attachments only to addresses on the whitelist

C.Implement outgoing filter rules to quarantine messages that contain card data

D.Remove all external recipients from the employee's address book

Question 137

Legacy medical equipment, which contains sensitive data, cannot be patched. Which of the following is the BEST solution to improve the equipment's security posture?

A.Move the legacy systems behind a WAF

B.Place the legacy systems in the DMZ

C.Implement a VPN between the legacy systems and the local network.

D.Implement an air gap for the legacy systems.

Question 138

A security analyst has created an image of a drive from an incident.
Which of the following describes what the analyst should do NEXT?

A.The analyst should create a chain of custody document and notify stakeholders.

B.The analyst should create a hash of the image and compare it to the original drive's hash.

C.The analyst should create a backup of the drive and then hash the drive.

D.The analyst should begin analyzing the image and begin to report findings.

Question 139

A security analyst is auditing firewall rules with the goal of scanning some known ports to check the firewall's behavior and responses. The analyst executes the following commands:

The analyst then compares the following results for port 22:
nmap returns "Closed"
hping3 returns "flags=RA"
Which of the following BEST describes the firewall rule?

A.LOG --log-tcp-sequence

B.REJECT with --tcp-reset

C.DROP

D.DNAT --to-destination 1.1.1.1:3000

Question 140

An analyst reviews a recent report of vulnerabilities on a company's financial application server.
Which of the following should the analyst rate as being of the HIGHEST importance to the company's environment?

A.Susceptibility to XSS

B.Banner grabbing

C.Use of old encryption algorithms

D.SQL injection

E.Remote code execution

Other Version: 1028CompTIA.CS0-002.v2025-03-13.q112; 2458CompTIA.CS0-002.v2024-10-25.q354; 623CompTIA.CS0-002.v2024-09-17.q264; 858CuramSoftware.CS0-002.v2024-02-05.q218; 2264CuramSoftware.CS0-002.v2023-02-13.q163; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 14323CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 105HP.HPE0-V27.v2025-09-11.q78; 120Oracle.1Z0-1057-23.v2025-09-10.q47; 156Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 169TheSecOpsGroup.CNSP.v2025-09-08.q20; 237CFAInstitute.ESG-Investing.v2025-09-08.q173; 218PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 154Salesforce.Data-Architect.v2025-09-05.q216; 148Adobe.AD0-E605.v2025-09-05.q50

Question 136

Question 137

Question 138

Question 139

Question 140

Download PDF File