CompTIA CAS-004 dumps - 100% Pass Guarantee!

A security analyst is investigating a possible buffer overflow attack. The following output was found on a user's workstation:

graphic.linux_randomization.prg

Which of the following technologies would mitigate the manipulation of memory segments?

A. NX bit

B. ASLR

C. DEP

D. HSM

A domestic, publicly traded, online retailer that sells makeup would like to reduce the risks to the most sensitive type of data within the organization but also the impact to compliance. A risk analyst is performing an assessment of the collection and processing of data used within business processes. Which of the following types of data pose the GREATEST risk? (Choose two.)

A. Financial data from transactions

B. Shareholder meeting minutes

C. Data of possible European customers

D. Customers' shipping addresses

E. Deidentified purchasing habits

F. Consumer product purchasing trends

The Chief Security Officer (CSO) requested the security team implement technical controls that meet the following requirements:

1.

Monitors traffic to and from both local NAS and cloud-based file repositories

2.

Prevents on-site staff who are accessing sensitive customer PII documents on file repositories from accidentally or deliberately sharing sensitive documents on personal SaaS solutions

3.

Uses document attributes to reduce false positives

4.

Is agentless and not installed on staff desktops or laptops

Which of the following when installed and configured would BEST meet the CSO's requirements? (Choose two.)

A. DLP

B. NGFW

C. UTM

D. UEBA

E. CASB

F. HIPS

A company suspects a web server may have been infiltrated by a rival corporation. The security engineer reviews the web server logs and finds the following:

ls -l -a /usr/beinz/public; cat ./config/db.yml

The security engineer looks at the code with a developer, and they determine the log entry is created when the following line is run:

system {"ls -l -a #(patch)"}

Which of the following is an appropriate security control the company should implement?

A. Restrict directory permission to read-only access.

B. Use server-side processing to avoid XSS vulnerabilities in path input.

C. Separate the items in the system call to prevent command injection.

D. Parameterize a query in the path variable to prevent SQL injection.

An organization developed a social media application that is used by customers in multiple remote geographic locations around the world. The organization's headquarters and only datacenter are located in New York City. The Chief Information Security Officer wants to ensure the following requirements are met for the social media application:

1.

Low latency for all mobile users to improve the users' experience

2.

SSL offloading to improve web server performance

3.

Protection against DoS and DDoS attacks

4.

High availability

Which of the following should the organization implement to BEST ensure all requirements are met?

A. A cache server farm in its datacenter

B. A load-balanced group of reverse proxy servers with SSL acceleration

C. A CDN with the origin set to its datacenter

D. Dual gigabit-speed Internet connections with managed DDoS prevention