A financial institution wants to strengthen its cybersecurity posture by proactively engaging would-be intruders. Which strategy aligns BEST with an active defense approach that deceives attackers so the security team can observe and analyze their tactics?
Deploying a honeypot meets the goal because it is a deliberately exposed decoy system that lures adversaries, allowing defenders to monitor attacker behavior and gather threat intelligence. Network segmentation limits lateral movement but does not entice or study attackers. Patch management reduces known vulnerabilities without interacting with threat actors. A next-generation firewall focuses on traffic filtering and prevention, not deception or observation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a honeypot in cybersecurity?
Open an interactive chat with Bash
How does a honeypot differ from a firewall in cybersecurity?
Open an interactive chat with Bash
Why is network segmentation not considered an active defense mechanism in this context?