Free CompTIA SY0-601 Exam Dumps and SY0-601 Exam Questions

Question No: 21

MultipleChoice

A security proposal was set up to track requests for remote access by creating a baseline of the users' common sign-in properties. When a baseline deviation is detected, an Iv1FA challenge will be triggered. Which of the following should be configured in order to deploy the proposal?

Options

AContext-aware authentication

BSimultaneous authentication of equals

CExtensive authentication protocol

DAgentless network access control

Question No: 22

MultipleChoice

Which of the following are common VoIP-associated vulnerabilities? (Select TWO).

Options

ASPIM

Bvishing

CHopping

DPhishing

ECredential harvesting

FTailgating

Question No: 23

MultipleChoice

During a trial, a judge determined evidence gathered from a hard drive was not admissible. Which of the following BEST explains this reasoning?

Options

AThe forensic investigator forgot to run a checksum on the disk image after creation

BThe chain of custody form did not note time zone offsets between transportation regions

CThe computer was turned off. and a RAM image could not be taken at the same time

DThe hard drive was not properly kept in an antistatic bag when rt was moved

Question No: 24

MultipleChoice

A SOC operator is analyzing a log file that contains the following entries:

Options

ASQL injection and improper input-handling attempts

BCross-site scripting and resource exhaustion attempts

CCommand injection and directory traversal attempts

DError handling and privilege escalation attempts

Question No: 25

MultipleChoice

Which of the following control Types would be BEST to use in an accounting department to reduce losses from fraudulent transactions?

Options

ARecovery

BDeterrent

CCorrective

DDetective

Question No: 26

MultipleChoice

The database administration team is requesting guidance for a secure solution that will ensure confidentiality of cardholder data at rest only in certain fields in the database schem

a. The requirement is to substitute a sensitive data field with a non-sensitive field that is rendered useless if a data breach occurs Which of the following is the BEST solution to meet the requirement?

Options

ATokenization

BMasking

CFull disk encryption

DMirroring

Question No: 27

MultipleChoice

A DBA reports that several production server hard drives were wiped over the weekend. The DBA also reports that several Linux servers were unavailable due to system files being deleted unexpectedly. A security analyst verified that software was configured to delete data deliberately from those servers. No backdoors to any servers were found. Which of the following attacks was MOST likely used to cause the data toss?

Options

ALogic bomb

BRansomware

CFileless virus

DRemote access Trojans

ERootkit

Question No: 28

MultipleChoice

A company is implementing BYOD and wants to ensure all users have access to the same cloud-based services. Which of the following would BEST allow the company to meet this requirement?

Options

AlaaS

BPasS

CMaaS

DSaaS

Question No: 29

MultipleChoice

Which of the following documents provides expectations at a technical level for quality, availability, and responsibilities?

Options

AEOL

BSLA

CMOU

DEOSL

Question No: 30

MultipleChoice

A security analyst is receiving numerous alerts reporting that the response time of an internet-facing application has been degraded However, the internal network performance was not degraded. Which of the following MOST likely explains this behavior?

Options

ADNS poisoning

BMAC flooding

CDDoS attack

DARP poisoning