A recent malware outbreak across a subnet included successful rootkit installations on many PCs, ensuring persistence by rendering remediation efforts ineffective. Which of the following would best detect the presence of a rootkit in the future?
EDR (Endpoint Detection and Response) is the most suitable solution among the given options for detecting the presence of a rootkit. EDR solutions continuously monitor and collect data from endpoints, looking for suspicious activities and behavior patterns that might indicate the presence of malware, including rootkits. They also provide tools for investigating and responding to security incidents, making them effective for dealing with sophisticated threats that can evade traditional antivirus solutions.
Here is a brief explanation of the other options:
A. FDE (Full Disk Encryption):
FDE is a technology that encrypts the entire hard drive of a computer. While it is effective in protecting data at rest, especially in case of device theft or loss, it does not actively detect or prevent malware or rootkits.
upvoted 15 times
...
This section is not available anymore. Please use the main Exam Page.SY0-601 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
JT4
Highly Voted 1 year, 6 months agobenzo1976
1 year ago[Removed]
1 year, 6 months agoHellome123
11 months, 3 weeks agoDarexTech100
Highly Voted 1 year, 7 months ago