ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-001 All Questions

View all questions & answers for the CS0-001 exam
Go to Exam

Exam CS0-001 topic 1 question 194 discussion

Actual exam question from CompTIA's CS0-001
Question #: 194
Topic #: 1
[All CS0-001 Questions]

Which of the following countermeasures should the security administrator apply to MOST effectively mitigate Bootkit-level infections of the organization's workstation devices?

  • A. Remove local administrator privileges.
  • B. Configure a BIOS-level password on the device.
  • C. Install a secondary virus protection application.
  • D. Enforce a system state recovery after each device reboot.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by battlecreekspartan at June 4, 2020, 4:15 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
xose
4 years, 10 months ago
the best protection from bootkit level invection is TMP and removing local administrator which could prevent unauthorized command line usage
upvoted 1 times
[Removed]
4 years, 9 months ago
You mean TPM?
upvoted 3 times
...
...
TheThreatGuy
5 years ago
Users shouldn’t use administrator-level accounts for regular host operation. https://www.csoonline.com/article/3222066/how-to-detect-and-remove-a-rootkit-in-windows-10.html
upvoted 1 times
...
battlecreekspartan
5 years, 1 month ago
How would removing local administrator privileges help in this situation?
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel