Crucial Exams

CompTIA CySA+ CS0-003 Practice Question

Following a data breach at a financial corporation, the cybersecurity team is conducting a review to determine the attacker's initial access method. Initial findings reveal the compromise of an internal email account two weeks before the unauthorized data extraction occurred. Further investigation highlights that the compromised account received a suspicious email, which preceded signs of abnormal access patterns. To enhance preventative strategies, what should be targeted as the MOST likely root cause enabling the subsequent breach?

  • The data extraction from the compromised system

  • The later identified abnormal access patterns linked to the event

  • The deficiency in the intrusion detection system that did not alert on the abnormal access patterns

  • The phishing attack that targeted the internal email system

CompTIA CySA+ CS0-003
Incident Response and Management
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
SAVE $49
CompTIA Cybersecurity Analyst Voucher (CySA+ CS0-003)
$404.00 $355.00
Bash, the Crucial Exams Chat Bot
AI Bot