ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 310 discussion

Actual exam question from CompTIA's CAS-004
Question #: 310
Topic #: 1
[All CAS-004 Questions]

A Chief Security Officer (CSO) is concerned about the number of successful ransomware attacks that have hit the company. The data indicates most of the attacks came through a fake email. The company has added training, and the CSO now wants to evaluate whether the training has been successful. Which of the following should the CSO implement?

  • A. Simulating a spam campaign
  • B. Conducting a sanctioned vishing attack
  • C. Performing a risk assessment
  • D. Executing a penetration test
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Alizadeh at Aug. 29, 2023, 3:53 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ElDirec
1 year ago
Selected Answer: A
The CSO should consider implementing A. Simulating a spam campaign. Given that most of the ransomware attacks came through fake emails, simulating a spam campaign would be an effective way to evaluate whether the training has been successful. This involves sending simulated phishing emails to employees to see how they respond. If they fall for the simulated attack, it indicates that further training may be needed. If they correctly identify and report the simulated attack, it suggests that the training has been effective.
upvoted 2 times
...
Anarckii
1 year, 1 month ago
Selected Answer: A
A. Simulating a spam campaign
upvoted 2 times
...
CXSSP
1 year, 5 months ago
Selected Answer: A
A. Simulating a spam campaign To evaluate the effectiveness of the training in mitigating ransomware attacks via fake emails, the CSO should implement A. Simulating a spam campaign. Here's why: Focus on the Training Objective: The CSO's main concern is the effectiveness of the training in preventing ransomware attacks through fake emails. Simulating a spam campaign directly tests the employees' ability to identify and handle suspicious emails, which is the core focus of the training.
upvoted 2 times
...
Alizadeh
1 year, 5 months ago
Selected Answer: A
The answer is A. Simulating a spam campaign.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel