ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 176 discussion

Actual exam question from CompTIA's CS0-003
Question #: 176
Topic #: 1
[All CS0-003 Questions]

The security team at a company, which was a recent target of ransomware, compiled a list of hosts that were identified as impacted and in scope for this incident. Based on the following host list:



Which of the following systems was most pivotal to the threat actor in its distribution of the encryption binary via Group Policy?

  • A. SQL01
  • B. WK10-Sales07
  • C. WK7-Plant01
  • D. DCEast01
  • E. HQAdmin9
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by jspecht at March 5, 2024, 6:35 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
jspecht
Highly Voted 1 year, 2 months ago
Selected Answer: D
Since the binary was distributed via group policy, gaining access to the domain controller would be pivotal.
upvoted 13 times
...
gomet2000
Most Recent 8 months, 3 weeks ago
D: DCEast01 is listed as a Domain Controller running Windows Server 2016. Domain Controllers are critical in a Windows environment as they manage the network's security, including user authentication and Group Policy management. Group Policy is a feature in Active Directory (which is managed by Domain Controllers) that allows administrators to push configurations, including software installation and scripts, to multiple computers in the domain. If a threat actor compromised the Domain Controller, they could use Group Policy to distribute ransomware or other malicious binaries to all systems within the domain.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago