What describes the impact of false-positive alerts compared to false-negative alerts?
A.
A false negative is alerting for an XSS attack. An engineer investigates the alert and discovers that an XSS attack happened. A false positive is when an XSS attack happens and no alert is raised.
B.
A false positive is an event altering for an SQL injection attack. An engineer investigates the alert and discovers that an attack attempt was blocked by IPS. A false negative is when the attack gets detected but succeeds and results in a breach.
C.
A false positive is an event altering for a brute-force attack. An engineer investigates the alert and discovers that a legitimate user entered the wrong credential several times. A false negative is when a threat actor tries to brute-force attack a system and no alert is raised.
D.
A false negative is a legitimate attack triggering a brute-force alert. An engineer investigates the alert and finds out someone intended to break into the system. A false positive is when no alert and no attack is occurring.
A False-Positive is an event altering for a Brute-Force Attack
An Engineer investigates the alert and discovers that a legitimate user entered the wrong credential several times.
FALSE-POSITIVE = Entering of wrong credentials was Incorrectly classified as positive.
A False-Negative is when a Threat Actor tries to Brute-Force Attack a system and no alert is raised.
FALSE-NEGATIVE = Brute Force attack was Incorrectly classified as Negative.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.200-201 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
SecurityGuy
9 months, 3 weeks ago