Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. EC-Council
  5. 212-89

EC-Council 212-89 Exam Questions
EC-Council Certified Incident Handler (Page 9 )

Updated On: 19-Apr-2026
Page 9 of 53
PDF with 272 Questions

Which of the following is an attack that occurs when a malicious program causes a user's browser to perform an unwanted action on a trusted site for which the user is currently authenticated?

  1. Insecure direct object references
  2. Cross-site request forgery
  3. Cross-site scripting
  4. SQL injection

Answer(s): B



Which of the following is the BEST method to prevent email incidents?

  1. End user training
  2. Installing antivirus rule updates
  3. Web proxy filtering
  4. Disabling HTML in email content fields

Answer(s): C



What is the most recent NIST standard for incident response?

  1. 800-61r3
  2. 800-61r2
  3. 800-53r3
  4. 800-171r2

Answer(s): C



If a hacker cannot find any other way to attack an organization, they can influence an employee or a disgruntled staff member.
What type of threat is this?

  1. Identity theft
  2. Insider attack
  3. Phishing attack
  4. Footprinting

Answer(s): B



Mike is an incident handler for PNP Infosystems Inc. One day, there was a ticket submitted regarding a critical incident and Mike was assigned to handle the incident. During the process of incident handling, at one stage, he performed incident analysis and validation to check whether the incident is a genuine incident or a false positive.

Identify the stage he is currently in.

  1. Post-incident activities
  2. Incident disclosure
  3. Incident recording and assignment
  4. Incident triage

Answer(s): C



Viewing page 9 of 53
Viewing questions 41 - 45 out of 272 questions



Post your Comments and Discuss EC-Council 212-89 exam dumps with other Community members:

212-89 Exam Discussions & Posts

AI Tutor AI Tutor 👋 I’m here to help!