ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 251 discussion

Actual exam question from CompTIA's CS0-003
Question #: 251
Topic #: 1
[All CS0-003 Questions]

The SOC received a threat intelligence notification indicating that an employee’s credentials were found on the dark web. The user’s web and log-in activities were reviewed for malicious or anomalous connections, data uploads/downloads, and exploits. A review of the controls confirmed multifactor authentication was enabled. Which of the following should be done first to mitigate impact to the business networks and assets?

  • A. Perform a forced password reset.
  • B. Communicate the compromised credentials to the user.
  • C. Perform an ad hoc AV scan on the user's laptop.
  • D. Review and ensure privileges assigned to the user’s account reflect least privilege.
  • E. Lower the thresholds for SOC alerting of suspected malicious activity
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Chiniwini at July 28, 2024, 5:04 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Chiniwini
Highly Voted 1 year ago
Selected Answer: A
Perform a forced password reset: This is the most immediate and effective action to ensure that the compromised credentials cannot be used. Even if MFA is enabled, resetting the password will render the stolen credentials useless, preventing potential unauthorized access. The primary goal is to prevent any unauthorized access using the compromised credentials. Performing a forced password reset immediately addresses this concern, making A. Perform a forced password reset the first and most critical action to take.
upvoted 9 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel