Free CompTIA Security+ SY0-601 Practice Question
A medium-sized financial company has recently fallen victim to a phishing attack that has compromised some of their systems. As part of the incident response, what is the FIRST action that should be taken according to a well-developed incident response plan?
Eradication of the malware from the company's systems
Recovery of data from backups
Identification of the extent of the compromise
Notification of the company’s customers about the breach
This question's topic:
CompTIA Security+ SY0-601 /
Operations and Incident Response
SAVE $49