Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25

- Free Preparation Discussions

Eccouncil Exam 312-38 Topic 5 Question 73 Discussion

Actual exam question for Eccouncil's 312-38 exam

Question #: 73
Topic #: 5

[All 312-38 Questions]

Kyle, a front office executive, suspects that a Trojan has infected his computer. What should be his first course of action to deal with the incident?

AContain the damage

BDisconnect the five infected devices from the network

CInform the IRT about the incident and wait for their response

DInform everybody in the organization about the attack

Show Suggested Answer

Suggested Answer: B

by Dean at Aug 06, 2023, 03:15 AM

Limited Time Offer

25%

Off

Get Premium 312-38 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Janine

13 days ago

B) Disconnect the five infected devices from the network. Gotta save the network, even if it means sacrificing a few devices. It's like a cybersecurity version of 'the needs of the many outweigh the needs of the few'.

upvoted 0 times

Cecil

3 days ago

A) Contain the damage

upvoted 0 times

...

...

Reyes

25 days ago

D) Inform everybody in the organization about the attack. Transparency is key, and everyone deserves to know about the impending doom. Let the panic commence!

upvoted 0 times

Rhea

3 days ago

A) Contain the damage

upvoted 0 times

...

...

Sharan

1 months ago

A) Contain the damage. The old 'quarantine and observe' approach. It's the responsible thing to do, like a cybersecurity superhero!

upvoted 0 times

Hubert

9 days ago

A) Contain the damage

upvoted 0 times

...

...

Garry

1 months ago

B) Disconnect the five infected devices from the network. Can't have those Trojans spreading like wildfire, right? Gotta act fast!

upvoted 0 times

Billye

3 days ago

C) Inform the IRT about the incident and wait for their response

upvoted 0 times

...

Joanna

10 days ago

B) Disconnect the five infected devices from the network

upvoted 0 times

...

Hyun

23 days ago

A) Contain the damage

upvoted 0 times

...

...

Fausto

1 months ago

C) Inform the IRT about the incident and wait for their response. Duh, that's the obvious choice! IRT knows what to do in these situations.

upvoted 0 times

Lai

4 days ago

Definitely, but the IRT can provide guidance on that.

upvoted 0 times

...

My

9 days ago

Contain the damage should also be a priority, right?

upvoted 0 times

...

Miss

21 days ago

Yeah, they're trained to handle these situations efficiently.

upvoted 0 times

...

Nakita

24 days ago

Informing the IRT is definitely the right move.

upvoted 0 times

...

...

German

2 months ago

C) Inform the IRT about the incident and wait for their response

upvoted 0 times

...

Elli

2 months ago

B) Disconnect the five infected devices from the network

upvoted 0 times

...

Nichelle

2 months ago

A) Contain the damage

upvoted 0 times

...