New Release: Earn Rewards by referring new users! You can earn rewards redeemable for discounts on Vouchers and Memberships!

Free CompTIA CySA+ CS0-003 Practice Question

A company has become aware of a potential data breach that may have exposed sensitive customer information. In anticipation of possible litigation, which of the following actions is the BEST to ensure proper preservation of electronic evidence?

  • Limit access to the compromised systems exclusively to members of the legal team until the situation is resolved.

  • Take regular system backups to ensure any deleted files can be recovered during the investigation process.

  • Prepare and distribute a legal hold notice to appropriate personnel, and suspend any automated data deletion or overwriting policies.

  • Isolate the affected network segment to prevent further unauthorized access and contain the breach.

This question's topic:
CompTIA CySA+ CS0-003 / 
Incident Response and Management
Your Score:

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Pass using Crucial? Post on Social Media and get a $15 Account Credit! Rules apply. Hide these
SAVE $49
CompTIA Cybersecurity Analyst Voucher (CySA+ CS0-003)
$404.00 $355.00