New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca Cybersecurity-Audit-Certificate Exam - Topic 1 Question 19 Discussion

Actual exam question for Isaca's Cybersecurity-Audit-Certificate exam
Question #: 19
Topic #: 1
[All Cybersecurity-Audit-Certificate Questions]

A security setting to lock a profile after a certain number of unsuccessful login attempts would be MOST effective against which type of attack?

Show Suggested Answer Hide Answer
Suggested Answer: B

When employees use personal mobile devices to access a VPN, the greatest concern for an IS auditor is the potential for sensitive data to be stored in an unsecured manner. If data is stored in plain text, it could be easily accessed by unauthorized parties if the device is lost, stolen, or compromised. This risk is heightened when the devices are not managed by the organization's IT department, which would typically enforce security policies such as encryption.


by Dan at Jun 24, 2024, 11:38 AM

Limited Time Offer

25%

Off

Get Premium Cybersecurity-Audit-Certificate Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Sylvia
3 months ago
Really? I’m not sure that’s enough to stop a determined attacker.
upvoted 0 times
...
Val
3 months ago
No way, I think it could help with backdoors too!
upvoted 0 times
...
Dylan
3 months ago
Wait, isn't it also useful against other attacks?
upvoted 0 times
...
Ora
4 months ago
Agreed, locking after failed attempts is smart.
upvoted 0 times
...
Teddy
4 months ago
Definitely A, brute force attacks are all about guessing!
upvoted 0 times
...
Vanda
4 months ago
Hmm, I’m a bit confused. Could it also help against man-in-the-middle attacks? I thought those were more about intercepting data rather than guessing passwords.
upvoted 0 times
...
Loreen
4 months ago
I feel like this question is similar to one we practiced in class about account lockout policies. I think it was definitely about brute force attacks.
upvoted 0 times
...
Alise
4 months ago
I'm not entirely sure, but I remember something about buffer overflow attacks being more about exploiting vulnerabilities in software rather than login attempts.
upvoted 0 times
...
Tiera
5 months ago
I think locking a profile after failed attempts is mainly to prevent brute force attacks, right? It makes sense since those rely on guessing passwords repeatedly.
upvoted 0 times
...
Graham
5 months ago
I think the key here is understanding the different types of attacks and how this security measure would impact them. A brute force attack is definitely the most obvious one, since locking an account after failed attempts would stop the attacker from trying endless passwords. The other options seem less directly related, so I'm leaning towards A as the best answer.
upvoted 0 times
...
Rusty
5 months ago
Okay, let's see. A brute force attack is when someone tries a bunch of different passwords to break into an account, so that makes sense. But what about the other options - buffer overflow, backdoor, and man-in-the-middle? I'm a little fuzzy on how those attacks work and which one this security measure would be most effective against.
upvoted 0 times
...
Celia
5 months ago
Hmm, I'm not entirely sure about this one. I know that brute force attacks involve trying lots of different passwords, but I'm not confident that's the only type of attack this security measure would be effective against. I'll have to think it through carefully.
upvoted 0 times
...
Fletcher
5 months ago
This seems like a straightforward security question. I think the answer is A - Brute force, since locking an account after failed login attempts would be an effective way to prevent attackers from trying multiple passwords to gain access.
upvoted 0 times
...
France
5 months ago
I'm pretty sure the Network Trap tool is used to isolate and contain viruses, so I'll go with option C.
upvoted 0 times
...
Beckie
5 months ago
Hmm, I'm a bit confused by the question. Do I need to do any calculations or just look at the availability percentages directly?
upvoted 0 times
...
Noah
9 months ago
Brute force, huh? Sounds like a job for the 'Hulk Smash' method of security. I'm just imagining a big green guy angrily locking down profiles left and right. 'Puny hacker, you no get in!'
upvoted 0 times
...
Mindy
9 months ago
Backdoor? Really? That's more about hidden access points, not login security. Brute force is the way to go here, folks. Unless the answer is 'all of the above' and the real solution is to just turn off the computer. *wink wink*
upvoted 0 times
Aron
8 months ago
C: Backdoor is more about hidden access points, not login security
upvoted 0 times
...
Loise
8 months ago
B: I agree, brute force is the most effective against multiple login attempts
upvoted 0 times
...
Arthur
9 months ago
A: Brute force
upvoted 0 times
...
...
Francine
10 months ago
Wait, is this a trick question? I thought Man-in-the-middle would be the right answer, but I guess that's more about intercepting communication rather than login attempts. Brute force it is!
upvoted 0 times
Dona
9 months ago
It's not a trick question, Brute force is the most effective attack that can be prevented with this security setting.
upvoted 0 times
...
Chaya
9 months ago
Yeah, locking the profile after unsuccessful attempts would definitely help against that.
upvoted 0 times
...
Sherill
9 months ago
I think Brute force is the right answer.
upvoted 0 times
...
...
Julieta
10 months ago
I was thinking Buffer overflow, but that's more about exploiting software vulnerabilities. Locking the profile is a security measure, so it makes sense for Brute force attacks.
upvoted 0 times
Muriel
9 months ago
C: Agreed, it's a good way to prevent someone from guessing passwords over and over.
upvoted 0 times
...
Oretha
9 months ago
B: Yeah, locking the profile after failed attempts would definitely help against that.
upvoted 0 times
...
Karma
9 months ago
A: I think it's Brute force.
upvoted 0 times
...
...
Honey
10 months ago
Brute force, definitely! Locking the profile after failed attempts is a great way to stop those pesky hackers from guessing their way in.
upvoted 0 times
Nicolette
9 months ago
Actually, locking the profile after failed attempts is more effective against brute force attacks, not backdoor attacks.
upvoted 0 times
...
Denise
9 months ago
C) Backdoor
upvoted 0 times
...
Virgie
9 months ago
I agree, brute force attacks can be prevented by locking the profile after multiple failed login attempts.
upvoted 0 times
...
Janessa
10 months ago
A) Brute force
upvoted 0 times
...
...
Herminia
11 months ago
I'm not sure, but I think locking a profile after unsuccessful login attempts would definitely help prevent brute force attacks.
upvoted 0 times
...
Amber
11 months ago
I agree with Fidelia. Brute force attacks rely on trying multiple passwords until the correct one is found.
upvoted 0 times
...
Fidelia
11 months ago
I think the answer is A) Brute force.
upvoted 0 times
...

Save Cancel