Which of the following can the security analyst conclude?

SY0-601 0 Comments

A security analyst receives a SIEM alert that someone logged in to the appadmin test account, which is only used for the early detection of attacks.

If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

The security analyst then reviews the following application log:

Which of the following can the security analyst conclude?
A . A replay attack is being conducted against the application.
B . An injection attack is being conducted against a user authentication system.
C . A service account password may have been changed, resulting in continuous failed logins within the application.
D . A credentialed vulnerability scanner attack is testing several CVEs against the application.

Answer: C

Latest SY0-601 Dumps Valid Version with 396 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download SY0-601 PDF     SY0-601 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments