Free Access CompTIA.SY0-601.v2022-05-18.q297 Practice Test (Page 51)

Question 246

A company has drafted an insider-threat policy that prohibits the use of external storage devices.
Which of the following would BEST protect the company from data exfiltration via removable media?

A.Developing mandatory training to educate employees about the removable media policy

B.Blocking removable-media devices and write capabilities using a host-based security tool

C.Implementing a group policy to block user access to system files

D.Monitoring large data transfer transactions in the firewall logs

Question 247

Which of the following would BEST identify and remediate a data-loss event in an enterprise using third-party, web-based services and file-sharing platforms?

A.SIEM

B.UTM

C.DLP

D.CASB

Question 248

Which of the following is the BEST reason to maintain a functional and effective asset management policy that aids in ensuring the security of an organization?

A.To provide data to quantity risk based on the organization's systems.

B.To keep all software and hardware fully patched for known vulnerabilities

C.To only allow approved, organization-owned devices onto the business network

D.To standardize by selecting one laptop model for all users in the organization

Question 249

An analyst needs to set up a method for securely transferring files between systems. One of the requirements is to authenticate the IP header and the payload. Which of the following services would BEST meet the criteria?

A.PFS

B.TLS

C.ESP

D.AH

Question 250

A user contacts the help desk to report the following:
- Two days ago, a pop-up browser window prompted the user for a name
and password after connecting to the corporate wireless SSID. This had
never happened before, but the user entered the information as
requested.
- The user was able to access the Internet but had trouble accessing
the department share until the next day.
- The user is now getting notifications from the bank about
unauthorized transactions.
Which of the following attack vectors was MOST likely used in this scenario?

A.DNS poisoning

B.Evil twin

C.Rogue access point

D.ARP poisoning

Other Version: 2181CompTIA.SY0-601.v2025-02-24.q781; 2127CompTIA.SY0-601.v2024-07-31.q690; 1818CompTIA.SY0-601.v2023-02-27.q56; 1548CompTIA.SY0-601.v2023-02-09.q57; 3416CompTIA.SY0-601.v2023-02-06.q78; 1499CompTIA.SY0-601.v2023-01-05.q72; 3610CompTIA.SY0-601.v2022-09-29.q183; 3964CompTIA.SY0-601.v2022-05-11.q168; 4519CompTIA.SY0-601.v2022-05-09.q210; 4356CompTIA.SY0-601.v2022-05-03.q215; 9423CompTIA.SY0-601.v2022-02-05.q371; 104CompTIA.Examboosts.SY0-601.v2021-11-02.by.prudence.224q.pdf; 10236CompTIA.SY0-601.v2021-10-06.q97

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 151Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 173PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 151Salesforce.Data-Architect.v2025-09-05.q216; 145Adobe.AD0-E605.v2025-09-05.q50

Question 246

Question 247

Question 248

Question 249

Question 250

Download PDF File