Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Cisco Exam 300-215 Topic 2 Question 93 Discussion

Actual exam question for Cisco's 300-215 exam
Question #: 93
Topic #: 2
[All 300-215 Questions]

A security team received reports of users receiving emails linked to external or unknown URLs that are non- returnable and non-deliverable. The ISP also reported a 500% increase in the amount of ingress and egress email traffic received. After detecting the problem, the security team moves to the recovery phase in their incident response plan. Which two actions should be taken in the recovery phase of this incident? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: A

by Melita at Jan 26, 2025, 04:32 AM

Limited Time Offer

25%

Off

Get Premium 300-215 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Moon
3 days ago
Verifying the breadth of the attack and collecting logs seem like the obvious next steps to me. Can't really recover from an incident without understanding the full scope of the problem.
upvoted 0 times
...
Corinne
6 days ago
After that, we should scan hosts with updated signatures to ensure we have addressed all vulnerabilities.
upvoted 0 times
...
Jaleesa
7 days ago
I agree with Mattie. We also need to collect logs to understand the extent of the incident.
upvoted 0 times
...
Mattie
10 days ago
I think we should verify the breadth of the attack first.
upvoted 0 times
...

Save Cancel