CompTIA CySA+ CS0-003 Practice Question

A cybersecurity analyst has identified an ongoing attack on a virtualized server environment. While the analyst has implemented network segmentation, they must now decide the most effective isolation step to preserve evidence and maintain operations. The environment includes a mix of live client services and development systems. Which of the following actions should the analyst take FIRST?

Immediately perform forensic imaging of the affected virtual machines
Suspend the affected virtual machines, preserving their operation states
Reconfigure the virtual network interfaces to an isolated VLAN
Update firewall rules to restrict traffic to and from the virtual machines' current IP addresses

CompTIA CySA+ CS0-003

Incident Response and Management

Your Score:

SAVE $49

CompTIA Cybersecurity Analyst Voucher (CySA+ CS0-003)

$404.00 $355.00

Bash, the Crucial Exams Chat Bot

AI Bot

CompTIA CySA+ CS0-003 Practice Question

Answer Description

Ask Bash

What does it mean to suspend a virtual machine?

What is network segmentation and why is it important?

What is forensic imaging and how does it relate to incident response?

Monthly

$14.99

billed monthly
(cancel any time)

3 Month Pass

$34.99

One time purchase
Does not auto-renew.

Annual Pass

$59.99

One time purchase
Does not auto-renew.

Lifetime Pass

$119.99

One time purchase
Good for life.

All Certifications

Unlimited Practice Tests

Unlimited Questions

Zero Ads

Track scores

Report Cards

Major Voucher Discounts

Advanced PBQs

CompTIA CySA+ CS0-003 Practice Question

Report Issue

Answer Description

Ask Bash

What does it mean to suspend a virtual machine?

What is network segmentation and why is it important?

What is forensic imaging and how does it relate to incident response?

Report Issue