ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
An e-commerce site on AWS uses an Application Load Balancer in front of an Auto Scaling group. CloudWatch shows requests jump from 2 000 to 150 000 per minute, originating from thousands of global IP addresses. EC2 CPU utilization reaches 100 percent and customers receive 504 timeout errors. No code changes or credential misuse are detected. Which type of malicious activity best explains this behavior?
An advanced persistent threat conducting low-and-slow data exfiltration
An insider threat using privileged access to disrupt the service
A distributed denial-of-service (DDoS) attack against the application
A zero-day exploit enabling remote code execution on the EC2 instances
A distributed denial-of-service (DDoS) attack attempts to exhaust a target's compute or network capacity by overwhelming it with a flood of traffic from many geographically dispersed sources. The sudden spike to 150 000 requests per minute, the large number of different source IP addresses, and the resulting resource exhaustion and service outages precisely match DDoS characteristics.
An insider threat would typically involve actions taken with legitimate, internal credentials and would not require traffic from thousands of external IPs. A zero-day exploit focuses on taking advantage of an unknown software vulnerability to gain unauthorized access or execute code; it does not inherently generate massive, distributed traffic surges. An advanced persistent threat (APT) relies on stealth and persistence to exfiltrate data over time and deliberately avoids causing noticeable service disruption. Therefore, the observed symptoms most closely align with a DDoS attack.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a DDoS attack?
Open an interactive chat with Bash
How does AWS mitigate DDoS attacks?
Open an interactive chat with Bash
What is the role of an Application Load Balancer during a DDoS attack?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Systems and Application Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .