C. Zero day attacks. A zero day attack means the vulnerability was present from day 0. The only thing that would prevent it is constantly checking your open source libraries to see if there are updates because of a vulnerability. Same as patches and updates.
Wrong definition.
Zero Day attack means - any vulnerabilities / threat which is unknown and does not have any solution at this time.
So you don’t know you most likely monitor for known issues.
C: Zero-day attack
A zero-day attack exploits a previously unknown or unpatched vulnerability in software (heartbleed/log4j) - often found in open source libraries that are integrated into apps.
All these answers are terrible, but zero day attacks exploit vulnerabilities that would show up in a decent threat feed. APTs exploit vulnerabilities, but they require more than just handling and scanning for vulnerabilities.
Monitoring assets containing open source libraries for vulnerabilities is most effective against the risk of zero-day attacks or emerging vulnerabilities.
A zero-day attack targets previously unknown vulnerabilities in software or systems that the vendor has not yet patched or disclosed. Many open-source libraries and components are widely used across various applications, and they may contain undiscovered vulnerabilities. Monitoring these assets for vulnerabilities, especially in open-source libraries, helps identify and patch these security flaws before they are exploited by attackers in zero-day attacks.
APTs are sophisticated, long-term attacks. While they might leverage a vulnerability in an open-source library, they are more complex and often involve multiple attack vectors. Monitoring libraries is a helpful part of a broader defense against APTs, but it's not the primary mitigation strategy.
The correct answer is:
C. Zero-day attack
Explanation:
Monitoring assets that contain open-source libraries for vulnerabilities is most likely to mitigate the risk of a zero-day attack, particularly in scenarios where an attacker exploits vulnerabilities in outdated or poorly maintained open-source libraries.
By regularly monitoring these libraries:
Organizations can identify vulnerabilities as they are discovered.
They can apply patches or updates promptly, reducing the likelihood of a zero-day vulnerability being exploited.
Open-source libraries are commonly used in modern applications, and vulnerabilities in these libraries can be targeted by attackers in zero-day scenarios.
Zero-day attacks exploit vulnerabilities that are unknown to the software vendor and for which no patch is available. Open-source libraries, being widely used, are often targets for zero-day exploits. Monitoring these libraries for newly discovered vulnerabilities allows organizations to proactively mitigate the risk of zero-day attacks by:
Quickly identifying when a vulnerability is disclosed.
Applying patches or workarounds as soon as they become available.
Potentially implementing mitigations even before an official patch is released if details of the vulnerability are known.
Zero-day attacks exploit unknown or unpatched vulnerabilities in software. By monitoring and regularly updating open source libraries for known vulnerabilities, organizations can reduce the risk of zero-day exploits, ensuring that any discovered vulnerabilities are promptly addressed before they can be exploited by attackers.
I would go with C and here is why:
monitoring libraries won’t typically prevent the full spectrum of an APT, which includes social engineering, lateral movement, and other methods beyond just exploiting software vulnerabilities.
Monitoring assets containing open source libraries for vulnerabilities is most effective in mitigating zero-day attacks.
Zero-day attacks exploit vulnerabilities that are unknown to the software vendor and for which no patch exists.
By tracking open-source libraries and their associated vulnerabilities, organizations can identify and address potential risks before they are exploited.
The other options are less likely to be directly impacted by monitoring open source libraries:
DDoS attacks target network availability, not specific vulnerabilities.
APTs are persistent threats that may or may not involve exploiting software vulnerabilities.
While monitoring open source libraries won't prevent all zero-day attacks, it significantly reduces the risk of exploitation.
A Zero Day means exploiting those vulnerabilities for what there are no solutions yet. And these could be that it was not discovered and known to vendors yet.
So you can’t take action for threats that are unknown, so the answer most likely is B.
But anyone has confirmed answer pls confirm. Thx
Well, I think you will never be able to mitigate apt risk, because they've got to get you. It's just a question of time. And APT does possessed and developed lots of Zero-day vulnerabilities as well.
This section is not available anymore. Please use the main Exam Page.CISSP Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
CuteRabbit168
Highly Voted 2 years, 9 months agojackdryan
2 years, 1 month agoirEd1
Highly Voted 2 years, 5 months agoRamye
1 year agodjedwards
Most Recent 3 weeks, 5 days ago36dd0ae
1 month, 2 weeks agofuzzyguzzy
2 months, 2 weeks agoBigITGuy
3 months agoiRyae
4 months, 2 weeks agoeasyp
5 months agoFouad777
6 months, 1 week agoRavnit
6 months, 2 weeks agoaaminenaji
8 months, 2 weeks agodeeden
10 months, 4 weeks agoCCNPWILL
1 year agoRamye
1 year, 1 month agoJenkins3mol
1 year, 1 month agoJenkins3mol
1 year, 2 months agoCCNPWILL
1 year, 2 months ago