CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. CompTIA
  5. CAS-004

Free CAS-004 Exam Braindumps (page: 25)

Page 25 of 140
PDF with 555 Questions

A recent data breach stemmed from unauthorized access to an employee's company account with a cloud-based productivity suite. The attacker exploited excessive permissions granted to a third-party OAuth application to collect sensitive information.
Which of the following BEST mitigates inappropriate access and permissions issues?

  1. SIEM
  2. CASB
  3. WAF
  4. SOAR

Answer(s): B



A security engineer is hardening a company's multihomed SFTP server.
When scanning a public-facing network interface, the engineer finds the following ports are open:
-25
-110
-137
-138
-139
-445
Internal Windows clients are used to transferring files to the server to stage them for customer download as part of the company's distribution process.
Which of the following would be the BEST solution to harden the system?

  1. Close ports 110, 138, and 139. Bind ports 22, 25, and 137 to only the internal interface.
  2. Close ports 25 and 110. Bind ports 137, 138, 139, and 445 to only the internal interface.
  3. Close ports 22 and 139. Bind ports 137, 138, and 445 to only the internal interface.
  4. Close ports 22, 137, and 138. Bind ports 110 and 445 to only the internal interface.

Answer(s): B



A recent data breach revealed that a company has a number of files containing customer data across its storage environment. These files are individualized for each employee and are used in tracking various customer orders, inquiries, and issues. The files are not encrypted and can be accessed by anyone. The senior management team would like to address these issues without interrupting existing processes.
Which of the following should a security architect recommend?

  1. A DLP program to identify which files have customer data and delete them
  2. An ERP program to identify which processes need to be tracked
  3. A CMDB to report on systems that are not configured to security baselines
  4. A CRM application to consolidate the data and provision access based on the process and need

Answer(s): D


Reference:

https://searchdatacenter.techtarget.com/definition/configuration-management-database#:~:text=A%20configuration%20management%20database%
20(CMDB,the%20relationships%20between%20those%20components



A security analyst observes the following while looking through network traffic in a company's cloud log:
Which of the following steps should the security analyst take FIRST?

  1. Quarantine 10.0.5.52 and run a malware scan against the host.
  2. Access 10.0.5.52 via EDR and identify processes that have network connections.
  3. Isolate 10.0.50.6 via security groups.
  4. Investigate web logs on 10.0.50.6 to determine if this is normal traffic.

Answer(s): B



Page 25 of 140



Post your Comments and Discuss CompTIA CAS-004 exam with other Community members:

michrle23 commented on November 08, 2024
The purchase and download is very streamlined. I was able to quickly pay and download my course content. I have now started preparing. Once I finish my exam I will share my experience of the exam.
PAKISTAN
upvote

Fatima commented on June 17, 2024
The purchase and download is very streamlined. I was able to quickly pay and download my course content. I have now started preparing. Once I finish my exam I will share my experience of the exam.
EUROPEAN UNION
upvote

Sysadmin commented on April 22, 2024
How can you report incorrect answers? #27 is incorrect. First and foremost is always stop the spread, and then access the damage.
UNITED STATES
upvote

Gord commented on March 19, 2024
I hardly submit reivews... but the team at Xcerts.com really deserve one. They are super professional and the quality of their study guides are good. I highly recommend it anyone preparing for their exams.
UNITED KINGDOM
upvote

9eagles commented on April 07, 2023
on question 10 and so far 2 wrong answers as evident in the included reference link.
Anonymous
upvote

Change commented on December 11, 2023
Are some answers wrong
UNITED STATES
upvote

makeel commented on December 10, 2023
the questions are the same exist of another website
Anonymous
upvote

SecPro commented on October 29, 2023
Great dumps, helped me pass the exam.
Anonymous
upvote