CompTIA CySA+ CS0-003 Practice Question
A cybersecurity team has just contained and eradicated a malware infection incident in their network. Which of the following elements is essential to accurately document in the timeline to ensure a comprehensive incident report?
Final steps taken to resolve and close the incident
Information regarding the origin of the malware infection
All timestamps related to identification, containment, eradication, and recovery actions
Detailed logs of system activities during the incident