ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-002 All Questions

View all questions & answers for the CS0-002 exam
Go to Exam

Exam CS0-002 topic 1 question 25 discussion

Actual exam question from CompTIA's CS0-002
Question #: 25
Topic #: 1
[All CS0-002 Questions]

An organization is adopting IoT devices at an increasing rate and will need to account for firmware updates in its vulnerability management programs. Despite the number of devices being deployed, the organization has only focused on software patches so far, leaving hardware-related weaknesses open to compromise.
Which of the following best practices will help the organization to track and deploy trusted firmware updates as part of its vulnerability management programs?

  • A. Utilize threat intelligence to guide risk evaluation activities and implement critical updates after proper testing.
  • B. Apply all firmware updates as soon as they are released to mitigate the risk of compromise.
  • C. Sign up for vendor emails and create firmware update change plans for affected devices.
  • D. Implement an automated solution that detects when vendors release firmware updates and immediately deploy updates to production.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Adonist at Sept. 5, 2022, 9 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Laudy
Highly Voted 2 years, 10 months ago
I had also picked A. D is a terrible answer. lmao
upvoted 13 times
...
FEITH
Most Recent 10 months, 1 week ago
It should be B
upvoted 1 times
...
glenndexter
1 year, 2 months ago
Selected Answer: A
Option D suggests implementing an automated solution to detect and deploy firmware updates immediately, which may introduce risks if updates are not properly evaluated or tested before deployment. I will go with A.
upvoted 1 times
...
dickchappy
1 year, 7 months ago
Selected Answer: A
You NEVER immediately deploy updates without testing them. A is the only real answer.
upvoted 3 times
...
Dree_Dogg
1 year, 10 months ago
Selected Answer: A
Gotta go with A.
upvoted 1 times
...
Muculus478
1 year, 11 months ago
Selected Answer: D
Which of the ((following best practices)) will help the organization to track and deploy trusted firmware updates as part of its vulnerability management programs? Based on the question it seems it's assuming that all of these are ((best practices)), but which one will "help the organization to track and deploy trusted firmware updates." This is why the answer is implement an automated solution. While I agree with most everybody else that we would test before pushing it to the production environment. This is what we do in our organization and test to ensure operational impact. The question seems to be testing detailed reading to throw one off from the answer they want.
upvoted 3 times
...
2Fish
2 years, 4 months ago
Selected Answer: A
A. "Best Practice" is key here. Best to implement after testing, else you risking bricking your gear. However, in the real world, sometimes you do not have a platform to test first.
upvoted 2 times
...
nooooo
2 years, 4 months ago
Selected Answer: D
It's D. The key verbiage here is "Trusted firmware".
upvoted 1 times
...
CyberNoob404
2 years, 6 months ago
Selected Answer: A
"after proper testing." is why I choose A, because that is "best practice" as the question asks.
upvoted 1 times
...
knister
2 years, 6 months ago
I dont know why you would use Threat Intelligence here. Looks like a manager wrote that answer.
upvoted 1 times
NickDrops
2 years, 6 months ago
You can't go around patching/updating just because a new update came out. The update needs to be evaluated, especially based on risk. If its a super unlikely exploit that wouldn't accomplish a whole lot against your system, it may not be worth the downtime or the effort.
upvoted 2 times
...
...
gwerin
2 years, 6 months ago
Selected Answer: A
What's up with D? Who is just blindly smashing things out to their live prod environment without any real testing or oversight?
upvoted 4 times
...
david124
2 years, 8 months ago
Selected Answer: A
A is correct answer they arent saying all answers are incorrect, but they are asking best practice. receiving emails from vendors about updates is okay but you still didnt implement any changes to the hardware. changing and making hardware patches without proper testing or evaluation can cause you critical issues specially if a patch breaks your system
upvoted 3 times
...
dnc1981
2 years, 9 months ago
Why not C?
upvoted 2 times
...
MortG7
2 years, 9 months ago
D? really?...just blindly install without testing in lab first ?..I think not...A
upvoted 2 times
...
Tascjfbosafj
2 years, 9 months ago
Selected Answer: A
It's A.
upvoted 1 times
...
nonjabusiness
2 years, 10 months ago
Selected Answer: A
D sounds like a nightmare, A is the correct answer here
upvoted 1 times
...
enduser9000
2 years, 10 months ago
Can anyone explain why it is not A?
upvoted 1 times
hypertweeky
1 year, 11 months ago
No company should blindly install without testing. It could break other systems!
upvoted 1 times
...
hypertweeky
1 year, 11 months ago
meaning, it is A.
upvoted 1 times
...
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel