ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty SCS-C02 All Questions

View all questions & answers for the AWS Certified Security - Specialty SCS-C02 exam
Go to Exam

Exam AWS Certified Security - Specialty SCS-C02 topic 1 question 289 discussion

Exam question from Amazon's AWS Certified Security - Specialty SCS-C02
Question #: 289
Topic #: 1
[All AWS Certified Security - Specialty SCS-C02 Questions]

A security engineer needs to implement a solution to determine whether a company’s Amazon EC2 instances are being used to mine cryptocurrency. The solution must provide notifications of cryptocurrency-related activity to an Amazon Simple Notification Service (Amazon SNS) topic.

Which solution will meet these requirements?

  • A. Create AWS Config custom rules by using Guard custom policy. Configure the AWS Config rules to detect when an EC2 instance queries a DNS domain name that is associated with cryptocurrency-related activity. Configure AWS Config to initiate alerts to the SNS topic.
  • B. Enable Amazon GuardDuty. Create an Amazon EventBridge rule to send alerts to the SNS topic when GuardDuty creates a finding that is associated with cryptocurrency-related activity.
  • C. Enable Amazon Inspector. Create an Amazon EventBridge rule to send alerts to the SNS topic when Amazon Inspector creates a finding that is associated with cryRtocurrency-related activity.
  • D. Enable VPC flow logs. Send the flow logs to an Amazon S3 bucket. Set up a query in Amazon Athena to detect when an EC2 instance queries a DNS domain name that is associated with cryptocurrency-related activity. Configure the Athena query to initiate alerts to the SNS topic.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Pmktechno at Jan. 6, 2025, 1:28 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
phmeeeee
3 weeks, 1 day ago
Selected Answer: B
B - GuardDuty can detect threats activity like crypto-mining.
upvoted 1 times
...
AWSLoverLoverLoverLoverLover
2 months, 1 week ago
Selected Answer: B
Amazon GuardDuty is the best solution for detecting cryptocurrency mining on EC2 instances. It provides: Threat Detection for Cryptocurrency Mining ✅ GuardDuty has built-in detection for malicious activities, including crypto-mining behavior. It analyzes VPC Flow Logs, DNS logs, and CloudTrail logs to detect suspicious activity. Automated Alerts via EventBridge & SNS ✅ GuardDuty findings are automatically sent to Amazon EventBridge. EventBridge rules can trigger an SNS notification whenever GuardDuty detects cryptocurrency mining activity.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago