In which phase of the NIST Incident Response Life Cycle are the vulnerabilities that have been exploited by the attacker corrected and patched?
- Post-Incident Activities
- Detection and Analysis
- Preparation
- Containment, Eradication, and Recovery
Explanation: In the Containment, Eradication, and Recovery phase all of the hosts that need remediation are identified and all of the effects of the security incident are eliminated. In addition, all of the vulnerabilities that were exploited by the attacker must also be corrected or patched so that the incident does not occur again.
Exam with this question: Cybersecurity Pathway Final Exam Answers
Please login or Register to submit your answer