Which of the following scenarios would most likely warrant an investigation into potential account compromise due to indications of 'Concurrent session usage'?
A user's corporate email account is accessed simultaneously from a workstation in the company's New York office and a mobile device in Paris
After changing passwords, a user experiences a series of re-authentication prompts on their previously authenticated devices
A user logs into a VPN from their home network and then logs into a web application using the same credentials from the same network
A user logs into their email from a new device in their home country a day after logging in from their office computer
In the correct scenario, two sessions are initiated from geographically distant locations at the exact same time, which is unlikely to occur under normal circumstances and could indicate that the user's credentials have been compromised and used by an unauthorized party. The other options, although they may also raise some concerns, do not present the clear-cut, simultaneous nature of concurrent session usage that strongly suggests an account compromise.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What does 'concurrent session usage' mean in cybersecurity?
Open an interactive chat with Bash
How can organizations detect and respond to concurrent session usage?
Open an interactive chat with Bash
Why does geographically distant concurrent access indicate a potential compromise?