Ask Question
Computers and TechnologyComputers and Technology
6 March, 16:20

Scenario: An organization has an incident response plan that requires reporting incidents after verifying them. For security purposes, the organization has not published the plan. Only members of the incident response team know about the plan and its contents. Recently, a server administrator noticed that a web server he manages was running slower than normal. After a quick investigation, he realized an attack was coming from a specific IP address. He immediately rebooted the web server to reset the connection and stop the attack. He then used a utility he found on the Internet to launch a protracted attack against this IP address for several hours. Because attacks from this IP address stopped, he didn't report the incident.

What should have been done before rebooting the web server? A. Review the incidentB. Perform remediation stepsC. Take recovery stepsD. Gather evidence

+2
Answers (1)
  1. 6 March, 18:48
    0
    D, gather evidence, it's obvious he should have reported the problem which as many evidence possibly found, instead decides to reboot the server.
Know the Answer?
Not Sure About the Answer?
Find an answer to your question ✅ “Scenario: An organization has an incident response plan that requires reporting incidents after verifying them. For security purposes, the ...” in 📘 Computers and Technology if you're in doubt about the correctness of the answers or there's no answer, then try to use the smart search and find answers to the similar questions.
Search for Other Answers
You Might be Interested in
Which phrase best defines communication
Answers (1)
What would be printed out as a result of the following code? Question 7 options: 1) The quick brown fox jumped over the / nslow moving hen. 2) The quick brown fox jumped over the slow moving hen.
Answers (1)
describe how you would conduct a search for a single record.
Answers (1)
Which feature of the basic input/output system (bios) / unified extensible firmware interface (uefi) would you enable if you wanted to ensure the authenticity of the firmware and prevent pre-boot viruses from being launched?
Answers (1)
What are the two main purposes of S/MIME? Digital signatures Encryption Junk mail prevention Spam prevention
Answers (1)
New Questions in Computers and Technology
Which of these is a requirement for developing game applications on devices running Apple's iOS operating system? A. Xcode libraries B. Android Development Kit C. ARM technology D. advanced microprocessors
Answers (2)
Walt needs to ensure that messages from a colleague in another organization are never incorrectly identified as spam. What should he do? Configure a safe recipient. Configure a blocked sender. Configure a safe sender. Do nothing.
Answers (1)
Where is permanent data in the computer stored?
Answers (2)
Use the line of code below to choose the correct answer. while (count < 7) : print 'Great!' This code is an example of a (n)
Answers (1)
Audio editing software contains several codecs that allow you to save and compress audio files in different formats. copy audio files. match the words actors speak with the movement of their lips. create your own ringtones.
Answers (1)
Home » Computers and Technology » Scenario: An organization has an incident response plan that requires reporting incidents after verifying them. For security purposes, the organization has not published the plan.
Sign Up Forgot Password?