Free Access CuramSoftware.CS0-002.v2024-02-05.q218 Practice Test (Page 42)

Question 201

An organization is attempting to harden its web servers and reduce the information that might be disclosed by potential attackers. A security analyst is reviewing vulnerability scan results from a recent web server scan.
Portions of the scan results are shown below:

Which of the following lines indicates information disclosure about the host that needs to be remediated?

A.Response: :\Documents\MarySmith\mailingList.pdf

B.Finding#5144322

C.First Time Detected 10 Nov 2015 09:00 GMT-0600

D.Access Path: http://myOrg.com/mailingList.htm

E.Request: GET http://myOrg.com/mailingList.aspx?content=volunteer

Question 202

Approximately 100 employees at your company have received a phishing email. As a security analyst you have been tasked with handling this situation.
INSTRUCTIONS
Review the information provided and determine the following:
1. How many employees clicked on the link in the phishing email?
2. On how many workstations was the malware installed?
3. What is the executable file name or the malware?

Question 203

A company stores all of its data in the cloud. All company-owned laptops are currently unmanaged, and all users have administrative rights. The security team is having difficulty identifying a way to secure the environment. Which of the following would be the BEST method to protect the company's data?

A.Implement UEM on an systems and deploy security software.

B.Implement DLP on all workstations and block company data from being sent outside the company

C.Implement a CASB and prevent certain types of data from being downloaded to a workstation

D.Implement centralized monitoring and logging for an company systems.

Question 204

A company's blocklist has outgrown the current technologies in place. The ACLs are at maximum, and the IPS signatures only allow a certain amount of space for domains to be added, creating the need for multiple signatures. Which of the following configuration changes to the existing controls would be the MOST appropriate to improve performance?

A.Implement a host-file-based solution that will use a list of all domains to deny for all machines on the network.

B.Create an IDS for the current blocklist to determine which domains are showing activity and may need to be removed

C.Review the current blocklist and prioritize it based on the level of threat severity. Add the domains with the highest severity to the blocklist.

D.Review the current blocklist to determine which domains can be removed from the list and then update the ACLs

Question 205

Which indicators can be used to detect further occurrences of a data exfiltration incident. The analyst determines backups were not performed during this time and reviews the following:

Which of the following should the analyst review to find out how the data was exfilltrated?

A.Monday's logs

B.Wednesday's logs

C.Thursday's logs

D.Tuesday's logs

Other Version: 2914CompTIA.CS0-002.v2025-03-13.q112; 3830CompTIA.CS0-002.v2024-10-25.q354; 1416CompTIA.CS0-002.v2024-09-17.q264; 2847CuramSoftware.CS0-002.v2023-02-13.q163; 5028CuramSoftware.CS0-002.v2022-08-26.q256; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 15393CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 202PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 299Nokia.4A0-113.v2026-05-01.q69; 258EC-COUNCIL.312-49v11.v2026-04-30.q214; 228Microsoft.MB-820.v2026-04-30.q101; 211Salesforce.MC-202.v2026-04-30.q57; 206BICSI.INSTC_V8.v2026-04-29.q53; 336NMLS.MLO.v2026-04-28.q82; 243NCARB.Project-Management.v2026-04-28.q27; 465EMC.D-AV-DY-23.v2026-04-27.q184; 1120ServiceNow.CSA.v2026-04-27.q483

Question 201

Question 202

Question 203

Question 204

Question 205

Download PDF File