CompTIA Study Materials
AWS Study Materials
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA Security+ SY0-601 Practice Question

Upon reviewing the SIEM trends, an analyst observes a pattern of increased login failures on the organization's web portal every night at 3 AM. There is no known maintenance or legitimate activity scheduled at this time. Which of the following would be the most appropriate immediate action for the analyst to undertake?

  • Review the relevant log files for IP addresses, user accounts involved, and potential payload in the requests

  • Immediately update the IDS/IPS signatures to block the IP addresses associated with the login failures

  • Implement a CAPTCHA mechanism on the login page to deter automated login attempts

  • Inform the legal department of a potential breach due to the regular login failures

Subscribe to avoid duplicate questions and track your progress over time

Your Score:
Operations and Incident Response
Architecture and Design
Implementation
Governance, Risk, and Compliance
Attacks, Threats, and Vulnerabilities
CompTIA Security+ SY0-601
  • Attacks, Threats, and Vulnerabilities
  • Architecture and Design
  • Implementation
  • Operations and Incident Response
    • This question is filed here
  • Governance, Risk, and Compliance