Which of the following is the BEST solution to help prevent this type of attack from being successful in the future?

A security engineer is reviewing a record of events after a recent data breach incident that

Involved the following:

• A hacker conducted reconnaissance and developed a footprint of the company s Internet-facing web application assets.

• A vulnerability in a third-party horary was exploited by the hacker, resulting in the compromise of a local account.

• The hacker took advantage of the account’s excessive privileges to access a data store and exfiltrate the data without detection.

Which of the following is the BEST solution to help prevent this type of attack from being successful in the future?
A . Dynamic analysis
B. Secure web gateway
C. Software composition analysis
D. User behavior analysis
E. Web application firewall

Answer: E

Explanation:

A web application firewall (WAF) is a security device that inspects web application traffic and can detect and prevent malicious activity such as SQL injection, cross-site scripting, and malicious file uploads. This type of attack could have been prevented if a WAF was in place to monitor and block malicious traffic. Resources:

CompTIA Advanced Security Practitioner (CASP+) Study Guide, Chapter 4: “Web Application Firewalls,” Wiley, 2018. https://www.wiley.com/en-us/CompTIA+Advanced+Security+Practitioner+CASP%2B+Study+Guide%2C+2nd+Edition -p-9781119396582

Latest CAS-004 Dumps Valid Version with 128 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments