A system administrator notices that a previously dormant server is suddenly experiencing unusually high processor and memory usage. Simultaneously, there is a significant increase in outbound network traffic late at night when the server is usually idle. What could be the most likely explanation for this anomaly?
An update is installed on the server, causing high hardware resource usage.
A scheduled backup process is running, resulting in high outbound network traffic.
The server is participating in a botnet and engaging in data exfiltration.
The server is undergoing maintenance, which causes a spike in resource usage.
The scenario provided describes several indicators of potentially malicious activity: increased processor and memory usage, as well as an unusual spike in outbound network traffic. These are common signs that the server might be compromised and being used for data exfiltration or participating in a botnet.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a botnet and how does it work?
Open an interactive chat with Bash
What is data exfiltration and how can it be detected?
Open an interactive chat with Bash
What are the signs that a server may be compromised?