CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA CySA+ CS0-003 Practice Question

A cybersecurity analyst has identified an ongoing attack on a virtualized server environment. While the analyst has implemented network segmentation, they must now decide the most effective isolation step to preserve evidence and maintain operations. The environment includes a mix of live client services and development systems. Which of the following actions should the analyst take FIRST?

  • Immediately perform forensic imaging of the affected virtual machines

  • Update firewall rules to restrict traffic to and from the virtual machines' current IP addresses

  • Suspend the affected virtual machines, preserving their operation states

  • Reconfigure the virtual network interfaces to an isolated VLAN

This question is for objective:
Incident Response and Management
Your Score:
Incident Response and Management
Security Operations
Vulnerability Management
Reporting and Communication