ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-501 All Questions

View all questions & answers for the SY0-501 exam
Go to Exam

Exam SY0-501 topic 1 question 928 discussion

Actual exam question from CompTIA's SY0-501
Question #: 928
Topic #: 1
[All SY0-501 Questions]

A security analyst discovers that a company's username and password database was posted on an Internet forum. The username and passwords are stored in plain text. Which of the following would mitigate the damage done by this type of data exfiltration in the future?

  • A. Create DLP controls that prevent documents from leaving the network
  • B. Implement salting and hashing.
  • C. Configure the web content filter to block access to the forum.
  • D. Increase password complexity requirements.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by bobthebuilder55110 at Feb. 3, 2021, 4:09 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
bthomp89
Highly Voted 4 years, 2 months ago
This is definitely a tricky question but if you examine the question closes it says "which of the following would mitigate the damage done by this type of data exfiltration in the future? keywords: "Mitigate the damage done" they are essentially asking that in case this type of leakage happens again in the future, what can we do as an organization to lessen the blow of this and salting and hashing the passwords would at least make it more challenging for anyone trying to read it
upvoted 12 times
...
smitho
Most Recent 3 years, 5 months ago
A is the answer It's in the database of the company, so DLP will prevent sensitive documents from leaving the network. Hashed password can be decrypted, the salt adds more complication to decrypt but it can be if the attacker is driven to do so
upvoted 2 times
...
Incredible99
4 years, 2 months ago
It says username/pw stored in plain text and if we consider this as a key point, then answer definitely B but if we look up first part of the question then answer would be A.
upvoted 2 times
Funkydave
4 years, 1 month ago
DLP wouldn't protect against that, you'd have to setup a custom filter to match username/password. DLP in MS world uses pattern matching (regex).
upvoted 2 times
...
...
imeaniguess
4 years, 2 months ago
"The username and passwords are stored in plain text." THIS is the issue that the question is asking you to mitigate. Even if there was another breach, it wouldn't be as big of a problem since the usernames and passwords were salted and hashed.
upvoted 4 times
...
Cliff01
4 years, 2 months ago
Is A your answer then?
upvoted 1 times
bthomp89
4 years, 2 months ago
No, my answer is B. "Implement salting and hashing" because that would at least "Mitigate the damage" if it happens again in the future A. is wrong because it doesn't "Mitigate" anything, it prevents the leakage from your organization sure, but the question is asking what can be done to "Mitigate the damage done" in the future. btw I just passed the 501 exam 2/6/2021 and I can tell you that they had some tricky questions like this so its important to read the question thoroughly and look for key words
upvoted 8 times
[Removed]
4 years, 1 month ago
Did you find these questions helpful? How many from this site came up on the exam?
upvoted 1 times
...
...
...
bobthebuilder55110
4 years, 3 months ago
I am surprised that no one has talked about this question, why not A ?? Look at what question is asking "Which of the following would mitigate the damage done by this type of data exfiltration in the future?" Why not implement dlp so nothing leaves the network
upvoted 3 times
FNavarro
4 years, 2 months ago
It's definitely DLP. Lol. I don't know WTF everyone else is talking about. What good is hashing stolen passwords going to do you?
upvoted 2 times
Heymannicerouter
3 years, 12 months ago
It's a CompTIA exam, the right answer is not always what makes the most sense in the real world.
upvoted 1 times
...
...
Heymannicerouter
3 years, 12 months ago
Because the question is asking what mitigates the damage done, not what prevents it.
upvoted 1 times
...
whitehathehe
3 years, 11 months ago
even if there's a data loss, salting and hashing will make the data useless for the attackers
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago