CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA Security+ SY0-701 Practice Question

A company has noticed unusual activity on their network and has started an investigation. As a security analyst, you are reviewing logs from various endpoints to identify the source of the activity. Which of the following log entries would likely indicate a security incident in progress?

  • Repeated login failures from a single source, followed by a successful login to an administrative account.

  • Periodic security scanning by the in-house vulnerability management tool.

  • A single successful login to a user account during working hours.

  • Scheduled system updates being applied outside of office hours.

This question's topic:
CompTIA Security+ SY0-701 / 
Security Operations
Your Score:
Security Operations
General Security Concepts
Threats, Vulnerabilities, and Mitigations
Security Architecture
Security Program Management and Oversight