Which of the following should a network security administrator recommend to assist with detecting these activities?

A website administrator is concerned the company’s static website could be defaced by hacktivists or used as a pivot point to attack internal systems.

Which of the following should a network security administrator recommend to assist with detecting these activities?
A . Implement file integrity monitoring.
B . Change the default credentials.
C . Use SSL encryption.
D . Update the web-server software.

View Answer

Answer: A

Explanation:

Implementing file integrity monitoring (FIM) would assist with detecting activities such as website defacement or internal system attacks. FIM is a process that monitors and alerts on changes to files or directories that are critical for security or functionality. FIM can help detect unauthorized modifications, malware infections, data breaches, or configuration errors. FIM can also help with compliance and auditing requirements.

Reference: https://www.tripwire.com/state-of-security/security-data-protection/cyber-security/what-is-file-integrity-monitoring/