CompTIA CompTIA Certifications SY0-601 Questions & Answers

• Question 1221:

  Which of the following is the MOST secure but LEAST expensive data destruction method for data that is stored on hard drives?

  A. Pulverizing

  B. Shredding

  C. Incinerating

  D. Degaussing

  Correct Answer: B

  Comptia online book currently only uses hard drives in the sense of HDDs. The following is also from comptia's book.

  Due to the cost of facilities, physical destruction is likely to be contracted to a third-party. It is important to use a reputable service provider and to obtain a detailed inventory of how each media item was sanitized and certificates of destruction

• Question 1222:

  one of the attendees starts to notice delays in the connection. and the HTTPS site requests are reverting to HTTP. Which of the following BEST describes what is happening?

  A. Birthday collision on the certificate key

  B. DNS hyacking to reroute traffic

  C. Brute force to the access point

  D. A SSUTLS downgrade

  Correct Answer: D

• Question 1223:

  Which of the following environments can be stood up in a short period of time, utilizes either dummy data or actual data, and is used to demonstrate and model system capabilities and functionality for a fixed, agreed-upon duration of time?

  A. PoC

  B. Production

  C. Test

  D. Development

  Correct Answer: A

• Question 1224:

  A bad actor tries to persuade someone to provide financial information over the phone in order to gain access to funds. Which of the following types of attacks does this scenario describe?

  A. Vishing

  B. Phishing

  C. Spear phishing

  D. Whaling

  Correct Answer: A

  Reference: https://en.wikipedia.org/wiki/Voice_phishing

• Question 1225:

  While reviewing pcap data, a network security analyst is able to locate plaintext usernames and passwords being sent from workstations to network witches. Which of the following is the security analyst MOST likely observing?

  A. SNMP traps

  B. A Telnet session

  C. An SSH connection

  D. SFTP traffic

  Correct Answer: B

• Question 1226:

  A company is required to continue using legacy software to support a critical service. Which of the following BEST explains a risk of this practice?

  A. Default system configuration

  B. Unsecure protocols

  C. Lack of vendor support

  D. Weak encryption

  Correct Answer: C

  Lack of vendor support implies no security patches. Unsecure protocols are not necessarily always the case.

  Legacy Systems - Legacy systems are a source of risk because they no longer receive security updates and because the expertise to maintain and troubleshoot them is a scarce resource

• Question 1227:

  A security analyst notices several attacks are being blocked by the NIPS but does not see anything on the boundary firewall logs. The attack seems to have been thwarted Which of the following resiliency techniques was applied to the network to prevent this attack?

  A. NIC Teaming

  B. Port mirroring

  C. Defense in depth

  D. High availability

  E. Geographic dispersal

  Correct Answer: C

  A defense-in-depth strategy, aka a security-in-depth strategy, refers to a cybersecurity approach that uses multiple layers of security for holistic protection. A layered defense helps security organizations reduce vulnerabilities, contain threats, and mitigate risk https://csrc.nist.gov/glossary/term/defense_in_depth#:~:text=Definition(s)%3A,and%20dimensions%20of%20the%20organization

• Question 1228:

  Which of the following environment utilizes dummy data and is MOST to be installed locally on a system that allows to be assessed directly and modified easily wit each build?

  A. Production

  B. Test

  C. Staging

  D. Development

  Correct Answer: D

  A development environment is essentially what is on the development team's computers. It's where the developers are writing their code, making code updates, and where all their commits and branches exist. The development environment does not affect what the end user sees. Instead, it allows development to try out new features and updates before pushing them forward to deployment. A lot of preliminary testing is done at this point before moving to the next environment the stage environment.

  https://www.pagerduty.com/resources/learn/what-is-production-environment/

• Question 1229:

  A major clothing company recently lost of large of priority information. The security officer must find a solution to ensure this never happens again. Which of the following is the BEST technician implementation to present this from happening again?

  A. Configure DLP solution

  B. Disable peer-to-peer sharing

  C. Enable role-based access controls.

  D. Mandate job rotation

  E. Implement content filters

  Correct Answer: A

  Makes the most sense implementing a DLP solution wont allow this Proprietary information be leaked or sent from the inside of the company.

• Question 1230:

  Which of the following would produce the closet experience of responding to an actual incident response scenario?

  A. Lessons learned

  B. Simulation

  C. Walk-through

  D. Tabletop

  Correct Answer: B