In an attempt to prevent network attacks, cyber analysts share unique identifiable attributes of known attacks with colleagues. What three types of attributes or indicators of compromise are helpful to share? (Choose three.)
- IP addresses of attack servers
- changes made to end system software
- netbios names of compromised firewalls
- features of malware files
- BIOS of attacking systems
- system ID of compromised systems
Explanation: Many network attacks can be prevented by sharing information about indicators of compromise (IOC). Each attack has unique identifiable attributes. Indicators of compromise are the evidence that an attack has occurred. IOCs can be identifying features of malware files, IP addresses of servers that are used in the attack, filenames, and characteristic changes made to end system software.
Exam with this question: CyberOps Associate (Version 1.0) - CyberOps Associate 1.0 Practice Final exam
Exam with this question: Endpoint Security (ESec) Final Exam Answers (Course Final)
Exam with this question: Network Security 1.0 Final Exam Answers
Please login or Register to submit your answer