Free Access CuramSoftware.CS0-002.v2024-02-05.q218 Practice Test (Page 32)

Question 151

A security analyst is researching ways to improve the security of a company's email system to mitigate emails that are impersonating company executives. Which of the following would be BEST for the analyst to configure to achieve this objective?

A.A TXT record on the name server for SPF

B.DNSSEC keys to secure replication

C.Domain Keys identified Man

D.A sandbox to check incoming mad

Question 152

During the threat modeling process for a new application that a company is launching, a security analyst needs to define methods and items to take into consideralion Wtiich of the following are part of a known threat modeling method?

A.Threat profile, infrastructure and application vulnerabilities, security strategy and plans

B.Purpose, objective, scope, (earn management, cost, roles and responsibilities

C.Spoofing tampering, repudiation, information disclosure, denial of service elevation of privilege

D.Human impact, adversary's motivation, adversary's resources, adversary's methods

Question 153

A security analyst is investigating malicious traffic from an internal system that attempted to download proxy avoidance software as identified from the firewall logs but the destination IP is blocked and not captured.
Which of the following should the analyst do?

A.Shut down the computer

B.Capture live data using Wireshark

C.Take a snapshot

D.Determine if DNS logging is enabled.

E.Review the network logs.

Question 154

A large insurance company wants to outsource its claim-handling operations to an overseas third-party organization Which of the following would BEST help to reduce the chance of highly sensitive data leaking?

A.Set up a VDI that the third party must use to interact with company systems.

B.Configure a VPN between the third party organization and the internal company network

C.Create jump boxes that are used by the third-party organization so it does not connect directly.

D.Use MFA to protect confidential company information from being leaked.

E.Implement NAC to ensure connecting systems have malware protection

Question 155

A company's computer was recently infected with ransomware. After encrypting all documents, the malware logs a random AES-128 encryption key and associated unique identifier onto a compromised remote website. A ransomware code snippet is shown below:

Based on the information from the code snippet, which of the following is the BEST way for a cybersecurity professional to monitor for the same malware in the future?

A.Use an IDS custom signature to create an alert for connections to www.malwaresite.com.

B.Write an ACL to block the IP address of www.malwaresite.com at the gateway firewall.

C.Reconfigure the enterprise antivirus to push more frequent to the clients.

D.Configure the company proxy server to deny connections to www.malwaresite.com.

Other Version: 2915CompTIA.CS0-002.v2025-03-13.q112; 3833CompTIA.CS0-002.v2024-10-25.q354; 1418CompTIA.CS0-002.v2024-09-17.q264; 2848CuramSoftware.CS0-002.v2023-02-13.q163; 5029CuramSoftware.CS0-002.v2022-08-26.q256; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 15395CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 203PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 302Nokia.4A0-113.v2026-05-01.q69; 261EC-COUNCIL.312-49v11.v2026-04-30.q214; 230Microsoft.MB-820.v2026-04-30.q101; 212Salesforce.MC-202.v2026-04-30.q57; 207BICSI.INSTC_V8.v2026-04-29.q53; 336NMLS.MLO.v2026-04-28.q82; 244NCARB.Project-Management.v2026-04-28.q27; 466EMC.D-AV-DY-23.v2026-04-27.q184; 1123ServiceNow.CSA.v2026-04-27.q483

Question 151

Question 152

Question 153

Question 154

Question 155

Download PDF File