This page was exported from Braindump2go Free Exam Dumps with PDF and VCE Collection [ https://www.mcitpdump.com ] Export date:Thu Nov 21 20:43:45 2024 / +0000 GMT ___________________________________________________ Title: [2017-New-Version]100% Valid Braindump2go EC-Council 312-50v9 Dumps PDF Premium Free Download Today(11-20) --------------------------------------------------- 2017 March New Updated EC-Council 312-50v9 Exam Dumps and 312-50v9 Exam Questions Updated Today!Free Instant Download 312-50v9 Exam Dumps (PDF & VCE) 589Q&As from www.Braindump2go.com  Today! 100% Real Exam Questions! 100% Exam Pass Guaranteed! 1.|NEW 312-50v9 Exam Dumps (PDF & VCE) 589Q&As Download:http://www.braindump2go.com/312-50v9.html 2.|NEW 312-50v9 Exam Questions & Answers Download:https://1drv.ms/f/s!AvI7wzKf6QBjgyJbM5f2lpRuMdO8 QUESTION 11Under the "Post-attack Phase and Activities", it is the responsibility of the tester to restore the systems to a pre-test state.Which of the following activities should not be included in this phase? (see exhibit) A.    IIIB.    IVC.    III and IVD.    All should be included. Answer: AExplanation:The post-attack phase revolves around returning any modified system(s) to the pretest state. Examples of such activities:Removal of any files, tools, exploits, or other test-created objects uploaded to the system during testingRemoval or reversal of any changes to the registry made during system testingComputer and Information Security Handbook, John R. Vacca (2012), page 531 QUESTION 12It is a regulation that has a set of guidelines, which should be adhered to by anyone who handles any electronic medical data. These guidelines stipulate that all medical practices must ensure that all necessary measures are in place while saving, accessing, and sharing any electronic medical data to keep patient data secure.Which of the following regulations best matches the description? A.    HIPAAB.    ISO/IEC 27002C.    COBITD.    FISMA Answer: AExplanation:The HIPAA Privacy Rule regulates the use and disclosure of Protected Health Information (PHI) held by "covered entities" (generally, health care clearinghouses, employer sponsored health plans, health insurers, and medical service providers that engage in certain transactions.)[15] By regulation, the Department of Health and Human Services extended the HIPAA privacy rule to independent contractors of covered entities who fit within the definition of "business associates".https://en.wikipedia.org/wiki/Health_Insurance_Portability_and_Accountability_Act#Privacy_Rule QUESTION 13Which of the following is a component of a risk assessment? A.    Administrative safeguardsB.    Physical securityC.    DMZD.    Logical interface Answer: AExplanation:Risk assessment include:The total process of identifying, measuring, and minimizing uncertain events affecting AIS resources. It includes risk analysis, cost benefit analysis, safeguard selection, security test and evaluation, safeguard implementation, and systems review.The total process of identifying, controlling, and eliminating or minimizing uncertain events that may affect system resources.lt includes risk analysis, cost benefit analysis, selection, implementation and test, security evaluation of safeguards, and overall security review.https://en.wikipedia.org/wiki/IT_risk_management#Risk_assessment QUESTION 14A medium-sized healthcare IT business decides to implement a risk management strategy. Which of the following is NOT one of the five basic responses to risk? A.    DelegateB.    AvoidC.    MitigateD.    Accept Answer: AExplanation:There are five main ways to manage risk: acceptance, avoidance, transference, mitigation or exploitation.http://www.dbpmanagement.com/15/5-ways-to-manage-risk QUESTION 15Your company was hired by a small healthcare provider to perform a technical assessment on the network.What is the best approach for discovering vulnerabilities on a Windows-based computer? A.    Use a scan tool like NessusB.    Use the built-in Windows Update toolC.    Check MITRE.org for the latest list of CVE findingsD.    Create a disk image of a clean Windows installation Answer: AExplanation:Nessus is an open-source network vulnerability scanner that uses the Common Vulnerabilities and Exposures architecture for easy cross-linking between compliant security tools.The Nessus server is currently available for Unix, Linux and FreeBSD. The client is available for Unix-or Windows-based operating systems.Note: Significant capabilities of Nessus include: Compatibility with computers and servers of all sizes. Detection of security holes in local or remote hosts. Detection of missing security updates and patches. Simulated attacks to pinpoint vulnerabilities. Execution of security tests in a contained environment. Scheduled security audits. QUESTION 16Nation-state threat actors often discover vulnerabilities and hold on to them until they want to launch a sophisticated attack. The Stuxnet attack was an unprecedented style of attack because it used four types of vulnerability.What is this style of attack called? A.    zero-dayB.    zero-hourC.    zero-sumD.    no-day Answer: AExplanation:Stuxnet is a malicious computer worm believed to be a jointly built American-Israeli cyber weapon.Exploiting four zero-day flaws, Stuxnet functions by targeting machines using the Microsoft Windows operating system and networks, then seeking out Siemens Step7 software.https://en.wikipedia.org/wiki/Stuxnet QUESTION 17An attacker changes the profile information of a particular user (victim) on the target website. The attacker uses this string to update the victim's profile to a text file and then submit the data to the attacker's database.<iframe src="http://www.vulnweb.com/updateif.php" style="display:none"></iframe>What is this type of attack (that can use either HTTP GET or HTTP POST) called? A.    Cross-Site Request ForgeryB.    Cross-Site ScriptingC.    SQL InjectionD.    Browser Hacking Answer: AExplanation:Cross-site request forgery, also known as one-click attack or session riding and abbreviated as CSRF (sometimes pronounced sea-surf) or XSRF, is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the website trusts.Different HTTP request methods, such as GET and POST, have different level of susceptibility to CSRF attacks and require different levels of protection due to their different handling by web browsers.https://en.wikipedia.org/wiki/Cross-site_request_forgery QUESTION 18It is a vulnerability in GNU's bash shell, discovered in September of 2014, that gives attackers access to run remote commands on a vulnerable system. The malicious software can take control of an infected machine, launch denial-of-service attacks to disrupt websites, and scan for other vulnerable devices (including routers).Which of the following vulnerabilities is being described? A.    ShellshockB.    RootshockC.    RootshellD.    Shellbash Answer: AExplanation:Shellshock, also known as Bashdoor, is a family of security bugs in the widely used Unix Bash shell, the first of which was disclosed on 24 September 2014.https://en.wikipedia.org/wiki/Shellshock_(software_bug) QUESTION 19When you return to your desk after a lunch break, you notice a strange email in your inbox. The sender is someone you did business with recently, but the subject line has strange characters in it.What should you do? A.    Forward the message to your company's security response team and permanently delete the message from your computer.B.    Reply to the sender and ask them for more information about the message contents.C.    Delete the email and pretend nothing happenedD.    Forward the message to your supervisor and ask for her opinion on how to handle the situation Answer: AExplanation:By setting up an email address for your users to forward any suspicious email to, the emails can be automatically scanned and replied to, with security incidents created to follow up on any emails with attached malware or links to known bad websites.https://docs.servicenow.com/bundle/helsinki-security-management/page/product/threat-intelligence/task/t_ConfigureScanEmailInboundAction.html QUESTION 20The network administrator contacts you and tells you that she noticed the temperature on the internal wireless router increases by more than 20% during weekend hours when the office was closed. She asks you to investigate the issue because she is busy dealing with a big conference and she doesn't have time to perform the task.What tool can you use to view the network traffic being sent and received by the wireless router? A.    WiresharkB.    NessusC.    NetcatD.    Netstat Answer: AExplanation:Wireshark is a Free and open source packet analyzer. It is used for network troubleshooting, analysis, software and communications protocol development, and education.Incorrect Answers:B: Nessus is an open-source network vulnerability scanner that uses the Common Vulnerabilities and Exposures architecture for easy cross-linking between compliant security tools.C: Netcat (often abbreviated to nc) is a computer networking utility for reading from and writing to network connections using TCP or UDP.D: Netstat provides network statistics.https://en.wikipedia.org/wiki/Wireshark !!!RECOMMEND!!! 1.|NEW 312-50v9 Exam Dumps (PDF & VCE) 589Q&As Download:http://www.braindump2go.com/312-50v9.html 2.|NEW 312-50v9 Study Guide Video: YouTube Video: YouTube.com/watch?v=YSA9ckpy_7k --------------------------------------------------- Images: --------------------------------------------------- --------------------------------------------------- Post date: 2017-03-14 03:22:12 Post date GMT: 2017-03-14 03:22:12 Post modified date: 2017-03-14 03:22:12 Post modified date GMT: 2017-03-14 03:22:12 ____________________________________________________________________________________________ Export of Post and Page as text file has been powered by [ Universal Post Manager ] plugin from www.gconverters.com