Which of the following can the security analyst conclude?

SY0-601 0 Comments

A security analyst receives a SIEM alert that someone logged in to the appadmin test account, which is only used for the early detection of attacks.

The security analyst then reviews the following application log:

Which of the following can the security analyst conclude?
A . A replay attack is being conducted against the application.
B . An injection attack is being conducted against a user authentication system.
C . A service account password may have been changed, resulting in continuous failed logins within the application.
D . A credentialed vulnerability scanner attack is testing several CVEs against the application.

Answer: C

Latest SY0-601 Dumps Valid Version with 396 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download SY0-601 PDF     SY0-601 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments