CFR-410 Exam Results

CyberSec First Responder (CFR) Exam Questions and Answers

Question 37

A company that maintains a public city infrastructure was breached and information about future city projects was leaked. After the post-incident phase of the process has been completed, which of the following would be

PRIMARY focus of the incident response team?

Options:

Restore service and eliminate the business impact.

Determine effective policy changes.

Inform the company board about the incident.

Contact the city police for official investigation.

Question 38

An organization was recently hit with a ransomware attack that encrypted critical documents and files that were stored on the corporate file server.

Which of the following provides the organization with the BEST chance for recovering their data?

Options:

Application white listing!

Antivirus software

Paying the ransom

Offsite backups

Question 39

According to SANS, when should an incident retrospective be performed?

Options:

After law enforcement has identified the perpetrators of the attack.

Within six months following the end of the incident.

No later than two weeks from the end of the incident.

Immediately concluding eradication of the root cause

Question 40

Which term describes the process of collecting logs from many sources across an IT infrastructure into a single, centralized platform to be reviewed and analyzed?

Options:

Log processing

Log aggregation

Log monitoring

Log normalization

Log correlation

Special Summer Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

CyberSec First Responder (CFR) Exam Questions and Answers

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce