An organization experienced a domain name system (DNS) attack caused by default user accounts not being removed from one of the servers. Which of the following would have been the BEST way to mitigate the risk of this DNS attack?
A.
Require all employees to attend training for secure configuration management.
B.
Have a third party configure the virtual servers.
C.
Configure the servers from an approved standard configuration.
D.
Configure the intrusion prevention system (IPS) to identify DNS attacks.
Option C is the recommended approach according to the CISA (Cybersecurity and Infrastructure Security Agency) textbook. It emphasizes the importance of following established guidelines and configurations to enhance security posture.
why not A? because it is about staff forget to remove the default account
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.CISA Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Tef_corp
8 months, 3 weeks agoBennyche
2 years ago