Pearson SY0-701 New Attempt

CompTIA Security+ Exam 2025 Questions and Answers

Question 61

A security analyst is reviewing logs and discovers the following:

Which of the following should be used lo best mitigate this type of attack?

Options:

Input sanitization

Secure cookies

Static code analysis

Sandboxing

Question 62

A company's Chief Information Security Officer (CISO) wants to enhance the capabilities of the incident response team. The CISO directs the incident response team to deploy a tool that rapidlyanalyzes host and network data from potentially compromised systems and forwards the data for further review. Which of the following tools should the incident response team deploy?

Options:

NAC

IPS

SIEM

EDR

Question 63

An organization's web servers host an online ordering system. The organization discovers that the servers are vulnerable to a malicious JavaScript injection, which could allow attackers to access customer payment information. Which of the following mitigation strategies would be most effective for preventing an attack on the organization's web servers? (Select two).

Options:

Regularly updating server software and patches

Implementing strong password policies

Encrypting sensitive data at rest and in transit

Utilizing a web-application firewall

Performing regular vulnerability scans

Removing payment information from the servers

Question 64

Which of the following phases of the incident response process attempts to minimize disruption?

Options:

Recovery

Containment

Preparation

Analysis

Summer Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

CompTIA Security+ Exam 2025 Questions and Answers

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce