Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Eccouncil Exam 212-89 Topic 5 Question 78 Discussion

Actual exam question for Eccouncil's 212-89 exam
Question #: 78
Topic #: 5
[All 212-89 Questions]

Bonney's system has been compromised by a gruesome malware.

What is the primary step that is advisable to Bonney in order to contain the malware

incident from spreading?

Show Suggested Answer Hide Answer
Suggested Answer: A

Turning off the infected machine is a common immediate response to contain a malware incident and prevent it from spreading to other systems on the network. This action halts any ongoing malicious activities by the malware, thereby limiting the potential for further damage or data exfiltration. However, it is essential to note that this step can lead to the loss of volatile data that might be useful for forensic analysis. Therefore, it is advisable only when it's critical to stop the malware immediately, and there's a strategy in place for forensic investigation that includes handling non-volatile data or when the preservation of volatile data is not possible.


Contribute your Thoughts:

Ocie
1 days ago
C is the way to go. The police need to know about this so they can track down the scumbags who did this. Gotta make sure it doesn't happen again!
upvoted 0 times
...
Janine
3 days ago
I think Derick's suggestion is also valid, as network administrators may have better tools to handle the situation
upvoted 0 times
...
Derick
7 days ago
B) Leave it to the network administrators to handle
upvoted 0 times
...
Erick
9 days ago
I agree with Audria, turning off the machine is the first step to contain the malware
upvoted 0 times
...
Edda
12 days ago
I'd go with B. The network guys are trained for this sort of thing. Why get your hands dirty when you can just let the pros handle it?
upvoted 0 times
...
Yen
15 days ago
Definitely option A. You don't want that nasty malware spreading like wildfire through the network. Shut it down before it's too late!
upvoted 0 times
Vallie
14 hours ago
User 1: I agree, turning off the infected machine is the best option.
upvoted 0 times
...
...
Audria
22 days ago
A) Turn off the infected machine
upvoted 0 times
...

Save Cancel