Free CompTIA Security+ SY0-701 Practice Question
An organization’s IT department noticed that specific entries that should be present in the security logs are missing, and there are sudden gaps in the logs’ regular time intervals. In the absence of any scheduled maintenance or known service disruptions, what is the MOST likely explanation for this disparity?
Logs were deliberately deleted or altered by an attacker.
The logging service crashed due to a software error, thus not recording data.
The log retention policy automatically purged older log entries.
Log generation was paused due to insufficient storage space.
This question's topic:
CompTIA Security+ SY0-701 /
Threats, Vulnerabilities, and Mitigations
SAVE $49