A newly identified network access vulnerability has been found in the OS of legacy IoT devices. Which of the following would best mitigate this vulnerability quickly?
If support from the manufacturer is not available, and the vulnerability is in the OS of legacy IoT devices, the best option to quickly mitigate the vulnerability is C. Segmentation.
Since patching may not be feasible without manufacturer support, segmentation can help isolate the vulnerable devices from the rest of the network. This can limit the potential attack surface and reduce the risk of exploitation, even if the devices themselves cannot be patched or updated. Segmentation can be an effective short-term strategy to enhance security when dealing with unsupported legacy IoT devices.If support from the manufacturer is not available, and the vulnerability is in the OS of legacy IoT devices, the best option to quickly mitigate the vulnerability is C. Segmentation.
Since patching may not be feasible without manufacturer support, segmentation can help isolate the vulnerable devices from the rest of the network. This can limit the potential attack surface and reduce the risk of exploitation, even if the devices themselves cannot be patched or updated.
Patch management can also be difficult for legacy systems, proprietary systems, and systems from vendors without robust security management plans, such as some types of Internet of Things devices. These systems will need compensating controls(ex.Segmentation ), or some other form of risk mitigation if patches are not readily available.
Patching is the most effective and efficient way to mitigate a vulnerability in legacy IoT devices quickly.
Please remember that legacy generally mean that it is either end of life or no support is provided any longer. Naturally, there is no patch for such devices, otherwise, they are not legacy.
The question is asking to mitigate ...quickly - patching better than segmentation.
segmentation would not fix a vulnerability - would isolate it...but not fix.
The question was asking to mitigate.
Do not confuse the meaning of the word mitigate to be fix. If you have a leak in your roof, you can mitigate the leak by using a tarp over the area. The leak has not been fixed, but it has been mitigated to prevent further damage to the structure.
Patching is not Updates , legacy devices may not get OS updates but can get hot-fixes or patches. And Anyway those IoT devices should be on segmented network anyway.
That how I see it but maybe I'm wrong.
Segmentation can be used to isolate the legacy IoT devices from the rest of the network. However, segmentation does not mitigate the vulnerability. It simply prevents the vulnerability from being exploited by attackers who have already gained access to the network. B
upvoted 6 times
...
This section is not available anymore. Please use the main Exam Page.SY0-601 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Tikalosh
Highly Voted 1 year, 7 months ago[Removed]
1 year, 3 months agoDashRyde
1 year, 7 months agoDarexTech100
Highly Voted 1 year, 7 months agoalicia2024
Most Recent 1 year, 3 months agoMortG7
1 year, 1 month agobrf2017
1 year, 4 months agodbdbfb0
1 year, 1 month agoMortG7
1 year, 4 months agoPeshokp
1 year, 6 months agoComPCertOn
1 year, 6 months agoactingnurse
1 year, 6 months agosujon_london
1 year, 6 months ago