DumpExams is an authorized company offering valid and latest dump exams & dumps VCE materials. Our dump exams & dumps VCE materials are high-quality; our passing rate is higher than others.

Guaranteed Success in ECIH Certification 212-89 Exam Dumps [Q69-Q84]

Share

Guaranteed Success in ECIH Certification 212-89 Exam Dumps

EC-COUNCIL 212-89 Daily Practice Exam New 2023 Updated 205 Questions

NEW QUESTION # 69
Which among the following CERTs is an Internet provider to higher education institutions and various other research institutions in the Netherlands and deals with all cases related to computer security incidents in which a customer is involved either as a victim or as a suspect?

  • A. Funet CERT
  • B. SURFnet-CERT
  • C. NET-CERT
  • D. DFN-CERT

Answer: B


NEW QUESTION # 70
Which of the following can be considered synonymous:

  • A. Precaution and countermeasure
  • B. Hazard and Threat
  • C. Threat and Threat Agent
  • D. Vulnerability and Danger

Answer: B


NEW QUESTION # 71
A malware code that infects computer files, corrupts or deletes the data in them and requires a host file to propagate is called:

  • A. Trojan
  • B. Worm
  • C. Virus
  • D. RootKit

Answer: C


NEW QUESTION # 72
Nervous Nat often sends emails with screenshots of what he thinks are serious incidents, but they always tum out to be false positives. Today, he sends another screenshot, suspecting a nation-state attack. As usual, you go through your list of questions, check your resources for information to determine whether the screenshot shows a real attack, and determine the condition of your network.
Which step of IR did you just perform?

  • A. Detection and analysis (or identification)
  • B. Remediation
  • C. Recovery
  • D. Preparation

Answer: A


NEW QUESTION # 73
According to the Evidence Preservation policy, a forensic investigator should make at least ..................... image
copies of the digital evidence.

  • A. Three image copies
  • B. Two image copies
  • C. Four image copies
  • D. One image copy

Answer: B

Explanation:
Explanation/Reference:


NEW QUESTION # 74
Sam received an alert through an email monitoring tool indicating that their company was targeted by a phishing attack. After analyzing the incident, Sam identified that most of the targets of the attack are high-prof le executives of the company.
What type of phishing attack is this?

  • A. Whaling
  • B. Puddle phishing
  • C. Spear phishing
  • D. Pharming

Answer: A


NEW QUESTION # 75
A Host is infected by worms that propagates through a vulnerable service; the sign(s) of the presence of the
worm include:

  • A. All the above
  • B. Established connection attempts targeted at the vulnerable services
  • C. Decrease in network usage
  • D. System becomes instable or crashes

Answer: D


NEW QUESTION # 76
The steps followed to recover computer systems after an incident are:

  • A. System restoration, validation, operation and monitoring
  • B. System monitoring, validation, operation and restoration
  • C. System restoration, operation, validation, and monitoring
  • D. System validation, restoration, operation and monitoring

Answer: A


NEW QUESTION # 77
Matt is an incident handler working for one of the largest social network companies, which was affected by malware. According to the company's reporting timeframe guidelines, a malware incident should be reported within 1 h of discovery/detection after its spread across the company.
Which category does this incident belong to?

  • A. CAT 2
  • B. CAT 1
  • C. CAT 4
  • D. CAT 3

Answer: D


NEW QUESTION # 78
The process of rebuilding and restoring the computer systems affected by an incident to normal operational
stage including all the processes, policies and tools is known as:

  • A. Incident Recovery
  • B. Incident Management
  • C. Incident Handling
  • D. Incident Response

Answer: A

Explanation:
Explanation/Reference:


NEW QUESTION # 79
Shall y, an incident handler, is working for a company named Texas Pvt.Ltd.based in Florida. She was asked to work on an incident response plan. As part of the plan, she decided to enhance and improve the security infrastructure of the enterprise. She has incorporated a security strategy that allows security professionals to use several protection layers throughout their information system. Due to multiple layer protection, this security strategy assists in preventing direct attacks against the organization's information system as a break in one layer only leads the attacker to the next layer.
Identify the security strategy Shall y has incorporated in the incident response plan.

  • A. Three-way handshake
  • B. Defense-in-depth
  • C. Covert channels
  • D. Exponential back off algorithm

Answer: B


NEW QUESTION # 80
ZYX company experienced a DoS/DDoS attack on their network. Upon investigating the incident, they concluded that the attack is an application-layer attack.
Which of the following attacks did the attacker use?

  • A. SIowloris attack
  • B. UDP flood attack
  • C. SYN flood attack
  • D. Ping of death

Answer: A


NEW QUESTION # 81
A payroll system has a vulnerability that cannot be exploited by current technology. Which of the following is correct about this scenario:

  • A. The risk must be transferred immediately
  • B. The risk is accepted
  • C. The risk must be urgently mitigated
  • D. The risk is not present at this time

Answer: D


NEW QUESTION # 82
Patrick is doing a cyber forensic investigation. He is in the process of collecting physical evidence at the crime scene.
Which of the following elements he must consider while collecting physical evidence?

  • A. Removable media, cable, and publications
  • B. Open ports, services, and operating system (OS) vulnerabilities
  • C. DNS information including domain and subdomains
  • D. Published nameservers and web application source code

Answer: A


NEW QUESTION # 83
A user downloaded what appears to be genuine software. Unknown to her, when she installed the application, it executed code that provided an unauthorized remote attacker access to her computer.
What type of malicious threat displays this characteristic?

  • A. Trojan
  • B. Virus
  • C. Backdoor
  • D. Spyware

Answer: A


NEW QUESTION # 84
......

Test Engine to Practice 212-89 Test Questions: https://www.dumpexams.com/212-89-real-answers.html

Use Valid 212-89 Exam - Actual Exam Question & Answer: https://drive.google.com/open?id=1Yysvq60FRsEtnwFTFtMpTrNu4aRIHtEy