CompTIA CompTIA Certifications SY0-601 Questions & Answers

• Question 21:

  In a rush to meet an end-of-year business goal, the IT department was told to implement a new business application. The security engineer reviews the attributes of the application and decides the time needed to perform due diligence is insufficient from a cybersecurity perspective. Which of the following BEST describes the security engineer's response?

  A. Risk tolerance

  B. Risk acceptance

  C. Risk importance

  D. Risk appetite

  Correct Answer: A

  Their assessment indicates a lower tolerance for risk in terms of cybersecurity. They recognize that the allocated time isn't adequate to ensure proper cybersecurity measures, suggesting a reluctance to proceed without sufficient assurance of security. This aligns more closely with the concept of risk tolerance, indicating their unwillingness to take on the associated risks due to time constraints.

• Question 22:

  A company is designing the layout of a new data center so it will have an optimal environmental temperature. Which of the following must be included? (Choose two.)

  A. An air gap

  B. A cold aisle

  C. Removable doors

  D. A hot aisle

  E. An IoT thermostat

  F. A humidity monitor

  Correct Answer: BD

  A cold aisle: Cold aisles are typically positioned in front of equipment racks, with the racks facing into the aisle. This design ensures that cold air from the air conditioning units is drawn directly into the front of the equipment, ensuring efficient cooling.

  A hot aisle: Hot aisles are positioned behind equipment racks. Equipment is oriented so that exhaust fans blow hot air from the equipment directly into these aisles. The hot air in these aisles is then typically extracted and cooled down, often being recycled back to the cold aisles.

  Using a combination of cold aisles and hot aisles ensures that equipment is efficiently cooled, and hot air is effectively managed, maintaining an optimal temperature environment for the data center.

  The other options, while they might be relevant in some data center designs, are not as critical as the cold and hot aisle configurations for ensuring optimal environmental temperature.

• Question 23:

  A company currently uses passwords for logging in to company-owned devices and wants to add a second authentication factor. Per corporate policy, users are not allowed to have smartphones at their desks. Which of the following would meet these requirements?

  A. Smart card

  B. PIN code

  C. Knowledge-based question

  D. Secret key

  Correct Answer: A

• Question 24:

  The Chief Technology Officer of a local college would like visitors to utilize the school's Wi-Fi but must be able to associate potential malicious activity to a specific person. Which of the following would best allow this objective to be met?

  A. Requiring all new. on-site visitors to configure their devices to use WPS

  B. Implementing a new SSID for every event hosted by the college that has visitors

  C. Creating a unique PSK for every visitor when they arrive at the reception area

  D. Deploying a captive portal to capture visitors' MAC addresses and names

  Correct Answer: D

  Deploying a captive portal to capture visitors' MAC addresses and names: A captive portal forces all users trying to access the Internet over Wi-Fi to view a special web page and take action, usually authentication or acceptance of terms and conditions, before they can get connected. In this scenario, by capturing visitors' names along with their device's MAC address, the college can associate network activity with specific individuals.

• Question 25:

  Which of the following threat actors is most likely to be motivated by ideology?

  A. Business competitor

  B. Hacktivist

  C. Criminal syndicate

  D. Script kiddie

  E. Disgruntled employee

  Correct Answer: B

  A hacktivist is a threat actor who is motivated by ideology or a social or political cause. They use their hacking skills to carry out cyber-attacks against organizations or individuals that they believe are against their ideology or principles. Hacktivists often engage in website defacements, data breaches, and distributed denial-of-service (DDoS) attacks to spread their message or achieve their objectives. Their actions are typically driven by social or political motivations rather than financial gain or personal amusement, which differentiates them from other types of threat actors.

• Question 26:

  A cybersecurity incident response team at a large company receives notification that malware is present on several corporate desktops. No known indicators of compromise have been found on the network. Which of the following should the team do first to secure the environment?

  A. Contain the impacted hosts.

  B. Add the malware to the application blocklist.

  C. Segment the core database server.

  D. Implement firewall rules to block outbound beaconing.

  Correct Answer: A

  Contain the impacted hosts: Containment is often the first step in incident response to prevent the malware from spreading further or causing additional damage. By containing the impacted hosts, you're isolating them to prevent potential lateral movement or communication with a command and control server.

• Question 27:

  A security administrator manages five on-site APs. Each AP uses different channels on a 5GHz network. The administrator notices that another access point with the same corporate SSID on an overlapping channel was created. Which of the following attacks most likely occurred?

  A. Jamming

  B. NFC attacks

  C. Disassociation

  D. Bluesnarfing

  E. Evil twin

  Correct Answer: E

• Question 28:

  A security team has been alerted to a flood of incoming emails that have various subject lines and are addressed to multiple email inboxes. Each email contains a URL shortener link that is redirecting to a dead domain. Which of the following is the best step for the security team to take?

  A. Create a blocklist for all subject lines.

  B. Send the dead domain to a DNS sinkhole.

  C. Quarantine all emails received and notify all employees.

  D. Block the URL shortener domain in the web proxy.

  Correct Answer: B

• Question 29:

  A data administrator is configuring authentication for a SaaS application and would like to reduce the number of credentials employees need to maintain. The company prefers to use domain credentials to access new SaaS applications. Which of the following methods would allow this functionality?

  A. SSO

  B. LEAP

  C. MFA

  D. PEAP

  Correct Answer: A

• Question 30:

  Which of the following is most likely associated with introducing vulnerabilities on a corporate network by the deployment of unapproved software?

  A. Hacktivists

  B. Script kiddies

  C. Competitors

  D. Shadow IT

  Correct Answer: D

  Shadow IT refers to information technology systems used within organizations without explicit organizational approval.