Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Eccouncil 212-89 Exam - Topic 1 Question 93 Discussion

Actual exam question for Eccouncil's 212-89 exam
Question #: 93
Topic #: 1
[All 212-89 Questions]

Raven is a part of an IH&R team and was informed by her manager to handle and lead the removal of the root cause for an incident and to close all attack vectors to prevent similar incidents in the future. Raven notifies the service providers and developers of affected resources. Which of the following steps of the incident handling and response process does Raven need to implement to remove the root cause of the incident?

Show Suggested Answer Hide Answer
Suggested Answer: B

Eradication is the step in the incident handling and response process where the root cause of an incident is removed, and measures are taken to close all attack vectors to prevent similar incidents in the future. After an incident has been properly contained to stop it from spreading or causing further damage, the eradication phase focuses on eliminating the source of the incident. This could involve removing malware, closing vulnerabilities, or implementing stronger security measures to address the exploitation paths used by the attacker.

In the scenario with Raven, notifying service providers and developers of affected resources is part of the actions taken to address the root cause of the incident. This ensures that any vulnerabilities or issues that contributed to the incident are fixed. By working to remove the root cause and secure the system against similar attacks, Raven is effectively implementing the eradication step of the incident handling process.


Contribute your Thoughts:

0/2000 characters
Laura
2 days ago
I'm not entirely sure, but I remember something about eradicating the threat after containment. Is that what Raven should focus on?
upvoted 0 times
...
France
7 days ago
I think the first step should be containment to stop further damage before addressing the root cause.
upvoted 0 times
...

Save Cancel