CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA CySA+ CS0-003 Practice Question

Following a data breach at a financial corporation, the cybersecurity team is conducting a review to determine the attacker's initial access method. Initial findings reveal the compromise of an internal email account two weeks before the unauthorized data extraction occurred. Further investigation highlights that the compromised account received a suspicious email, which preceded signs of abnormal access patterns. To enhance preventative strategies, what should be targeted as the MOST likely root cause enabling the subsequent breach?

  • The phishing attack that targeted the internal email system

  • The later identified abnormal access patterns linked to the event

  • The data extraction from the compromised system

  • The deficiency in the intrusion detection system that did not alert on the abnormal access patterns

This question's topic:
CompTIA CySA+ CS0-003 / 
Incident Response and Management
Your Score:
Incident Response and Management
Security Operations
Vulnerability Management
Reporting and Communication