Instant Access CompTIA.CAS-004.v2022-09-24.q81 Actual Practice Test Engine for Free (Page 5)

40%off

CAS-004 Premium Dumps

Latest CAS-004 Exam Premium Dumps provide by TrainingQuiz.com to help you Passing CAS-004 Exam! TrainingQuiz.com offers the updated CAS-004 exam dumps, the TrainingQuiz.com CAS-004 exam questions has been updated to correct Answer. Get the latest TrainingQuiz.com CAS-004 pdf dumps with Exam Engine here:

(620 Q&As Dumps, 40%OFF Special Discount: DumpsDB)

Question 16

A company in the financial sector receives a substantial number of customer transaction requests via email. While doing a root-cause analysis conceding a security breach, the CIRT correlates an unusual spike in port 80 traffic from the IP address of a desktop used by a customer relations employee who has access to several of the compromised accounts. Subsequent antivirus scans of the device do not return an findings, but the CIRT finds undocumented services running on the device. Which of the following controls would reduce the discovery time for similar in the future.

A.Configuring the mall to quarantine incoming attachment automatically
B.Deploying host-based firewalls and shipping the logs to the SIEM
C.Increasing the cadence for antivirus DAT updates to twice daily
D.Implementing application blacklisting

Question 17

A developer implement the following code snippet.

Which of the following vulnerabilities does the code snippet resolve?

A.Buffer overflow
B.Information leakage
C.Missing session limit
D.SQL inject

Question 18

A security engineer has been asked to close all non-secure connections from the corporate network. The engineer is attempting to understand why the corporate UTM will not allow users to download email via IMAPS. The engineer formulates a theory and begins testing by creating the firewall ID 58, and users are able to download emails correctly by using IMAP instead. The network comprises three VLANs:

The security engineer looks at the UTM firewall rules and finds the following:

Which of the following should the security engineer do to ensure IMAPS functions properly on the corporate user network?

A.Make sure the UTM certificate is imported on the corporate computers.
B.Confirm the email server certificate is installed on the corporate computers.
C.Contact the email service provider and ask if the company IP is blocked.
D.Create an IMAPS firewall rule to ensure email is allowed.

Question 19

An engineering team is developing and deploying a fleet of mobile devices to be used for specialized inventory management purposes. These devices should:
* Be based on open-source Android for user familiarity and ease.
* Provide a single application for inventory management of physical assets.
* Permit use of the camera be only the inventory application for the purposes of scanning
* Disallow any and all configuration baseline modifications.
* Restrict all access to any device resource other than those requirement ?

A.Swap out Android Linux kernel version for >2,4,0, but the internet build Android, remove unnecessary functions via MDL, configure to block network access, and perform integration testing
B.Build and install an Android middleware policy with requirements added, copy the file into/ user/init, and then built the inventory application.
C.Write a MAC sepolicy that defines domains with rules, label the inventory application, build the policy, and set to enforcing mode.
D.Set an application wrapping policy, wrap the application, distributes the inventory APK via the MAM tool, and test the application restrictions.

Question 20

An organization recently experienced a ransomware attack. The security team leader is concerned about the attack reoccurring. However, no further security measures have been implemented.
Which of the following processes can be used to identify potential prevention recommendations?

A.Recovery
B.Detection
C.Remediation
D.Preparation