ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 248 discussion

Actual exam question from CompTIA's CS0-003
Question #: 248
Topic #: 1
[All CS0-003 Questions]

A security analyst observed the following activities in chronological order:

1. Protocol violation alerts on external firewall
2. Unauthorized internal scanning activity
3. Changes in outbound network performance

Which of the following best describes the goal of the threat actor?

  • A. Data exfiltration
  • B. Unusual traffic spikes
  • C. Rogue devices
  • D. Irregular peer-to-peer communication
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by DrZoidBergsClaws at Aug. 7, 2024, 1:07 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
gomet2000
Highly Voted 8 months, 3 weeks ago
Selected Answer: A
A. Data exfiltration Explanation: Protocol violation alerts on external firewall: This might indicate attempts to bypass security controls to establish a connection to an external location or to set up a covert channel. Unauthorized internal scanning activity: This suggests that the threat actor is mapping the network to find valuable data or vulnerable systems. Changes in outbound network performance: This could indicate large amounts of data being transferred out of the network, which is typical of data exfiltration activities. These steps collectively align with a threat actor's goal of identifying valuable data and then exfiltrating it out of the network, often while trying to remain undetected.
upvoted 6 times
...
DrZoidBergsClaws
Most Recent 9 months ago
Answer would be A: Data exfiltration
upvoted 4 times
voiddraco
9 months ago
Yerpp i agree
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago