CompTIA Exam CS0-003 Topic 4 Question 44 Discussion

Actual exam question for CompTIA's CS0-003 exam

Question #: 44
Topic #: 4

A cybersecurity analyst notices unusual network scanning activity coming from a country that the company does not do business with. Which of the following is the best mitigation technique?

AGeoblock the offending source country

BBlock the IP range of the scans at the network firewall.

CPerform a historical trend analysis and look for similar scanning activity.

DBlock the specific IP address of the scans at the network firewall

Show Suggested Answer

Suggested Answer: A

Geoblocking is the best mitigation technique for unusual network scanning activity coming from a country that the company does not do business with, as it can prevent any potential attacks or data breaches from that country. Geoblocking is the practice of restricting access to websites or services based on geographic location, usually by blocking IP addresses associated with a certain country or region. Geoblocking can help reduce the overall attack surface and protect against malicious actors who may be trying to exploit vulnerabilities or steal information. The other options are not as effective as geoblocking, as they may not block all the possible sources of the scanning activity, or they may not address the root cause of the problem. Official Reference:

https://www.blumira.com/geoblocking/

https://www.avg.com/en/signal/geo-blocking

by Josphine at Jun 12, 2025, 05:41 AM

Limited Time Offer

25%

Off

Get Premium CS0-003 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Isaiah

13 hours ago

Performing a trend analysis is a great idea! We can't just react to the current situation - we need to understand the bigger picture and plan for the future.

upvoted 0 times

...

Brynn

10 days ago

Blocking the specific IP addresses is a good start, but what if they just use a different IP? Blocking the whole range is a more comprehensive solution.

upvoted 0 times

...