Which of the following should the IT administrator do FIRST after recovery?

SY0-601 V1

Last Post by Morgan 2 years ago

1 Posts

1 Users

0 Likes

185 Views

RSS

Morgan

(@pacapacmorgan)

Noble Member

Joined: 2 years ago

Posts: 738

Topic starter 15/08/2022 2:10 am

A small business just recovered from a ransomware attack against its file servers by purchasing the decryption keys from the attackers. The issue was triggered by a phishing email and the IT administrator wants to ensure it does not happen again.

Which of the following should the IT administrator do FIRST after recovery?

A . Scan the NAS for residual or dormant malware and take new daily backups that are tested on a frequent basis
B . Restrict administrative privileges and patch ail systems and applications.
C . Rebuild all workstations and install new antivirus software
D . Implement application whitelisting and perform user application hardening

Show Answer Hide Answer

Suggested Answer: A

Quote

Topic Tags

CompTIA Security+

Latest SY0-601 V1 Dumps Valid Version

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download PDF

Forum Jump:

Previous Topic

Next Topic