New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Eccouncil 212-82 Exam - Topic 1 Question 5 Discussion

Actual exam question for Eccouncil's 212-82 exam
Question #: 5
Topic #: 1
[All 212-82 Questions]

The IH&R team in an organization was handling a recent malware attack on one of the hosts connected to the organization's network. Edwin, a member of the IH&R team, was involved in reinstating lost data from the backup medi

a. Before performing this step, Edwin ensured that the backup does not have any traces of malware.

Identify the IH&R step performed by Edwin in the above scenario.

Show Suggested Answer Hide Answer
Suggested Answer: D

by Rima at Oct 25, 2022, 01:10 PM

Limited Time Offer

25%

Off

Get Premium 212-82 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Gary
4 months ago
Wait, how can we be sure the backup was clean? Sounds risky!
upvoted 0 times
...
Jesusita
4 months ago
Totally agree, recovery is the right step here!
upvoted 0 times
...
Jesus
4 months ago
Recovery makes sense, but why check for malware if it's already contained?
upvoted 0 times
...
Deeanna
4 months ago
I think it's more about eradication since he checked for malware.
upvoted 0 times
...
Adelina
4 months ago
Edwin was definitely in the recovery phase.
upvoted 0 times
...
Helga
5 months ago
I feel like this is definitely about recovery, but I wonder if there’s a part of containment involved too since he was checking for malware.
upvoted 0 times
...
Domitila
5 months ago
This reminds me of a practice question where we discussed the importance of ensuring backups are clean before recovery.
upvoted 0 times
...
Jerry
5 months ago
I'm not entirely sure, but it seems like it could also involve eradication since he checked for malware in the backup.
upvoted 0 times
...
Sang
5 months ago
I think Edwin's step was related to recovery since he was restoring lost data from the backup.
upvoted 0 times
...
Xenia
5 months ago
Okay, let me think this through. In an emergency, the priority is to provide appropriate treatment, so the provider should be able to use their best judgment to disclose PHI as needed. I think option C is the way to go.
upvoted 0 times
...
Elly
5 months ago
I'm leaning toward "none," but that doesn't seem right for avoiding deadlocks... I'll need to double-check our notes on this.
upvoted 0 times
...
DC
3 years ago
Shouldn't the answer to this question be A?
upvoted 1 times
...

Save Cancel