A user received an email attachment named `Hr402-report3662-empl621.exe` but did not run it. Which category of the cyber kill chain should be assigned to this type of event?
i think the question is a bit ambiguous?
which category of the cyber kill chain 'SHOULD BE ASSIGNED' to this type of event?
if it SHOULD BE ASSIGNED, shouldn't it be installation?
if it ask which category of the cyber kill chain is perpetrating/ if it ask which step it is, i would answer delivery
it's my guess
dont mind my rant, if i look at the step, the next step would be exploitation, then installation. Since exploitation isn't on the option, wouldn't it be installation?
..but did not ran it. So it is delivered but not yet installed.
upvoted 2 times
...
...
This section is not available anymore. Please use the main Exam Page.200-201 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
[Removed]
1 year, 10 months agoivlis_27
2 years agoivlis_27
2 years agoMartinRB
9 months, 3 weeks ago