966 お客様のコメント
質問 1:
During an internal audit following a surge in unauthorized financial transactions, a multinational investment firm's IR team uncovers evidence of an orchestrated campaign targeting senior staff. The attackers had pieced together fragments of sensitive data by mining executive digital footprints, reviewing online publications, and analyzing company-related mentions on external platforms. Later, they engaged directly with employees under fabricated personas, conducting scripted interviews to extract missing identifiers. With the assembled profile data, the adversaries submitted diversion requests for financial correspondence and used these to impersonate executives and execute fraudulent transfers. Forensic analysis revealed no signs of malware infection or system-level compromise. Which technique best aligns with the adversary's method of obtaining the initial sensitive information?
A. Pharming attack that redirected login traffic from internal systems to malicious replicas
B. Social engineering using open-source intelligence followed by pretexting
C. Skimming magnetic card data through modified payment devices in the company cafeteria
D. Phishing through spoofed emails embedded with malicious macros targeting employee laptops
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Raven is a part of an IH&R team and was informed by her manager to handle and lead the removal of the root cause for an incident and to close all attack vectors to prevent similar incidents in the future. Raven notifies the service providers and developers of affected resources. Which of the following steps of the incident handling and response process does Raven need to implement to remove the root cause of the incident?
A. Evidence gathering and forensic analysis
B. Eracicotion
C. Containment
D. Incident triage
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
Aaron, a digital first responder, is dispatched to an R&D lab after a suspected insider data breach involving intellectual property theft. Upon entering the lab, he observes fingerprint smudges on a workstation keyboard, oily residue on a DVD near the printer, and an unplugged USB drive on the desk. He documents the position of each item, uses gloves and evidence tags, covers surfaces to prevent contamination, and restricts access to the area. Which best practice is Aaron demonstrating?
A. Capturing live session activity from open peripherals
B. Isolating system peripherals for digital chain-of-custody
C. Preserving trace-level physical indicators for attribution
D. Safeguarding volatile system state for RAM acquisition
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
A large multinational enterprise recently integrated a digital HR onboarding system to streamline applicant submissions and document collection. During a cybersecurity audit, it was revealed that attackers had set up a phishing site mimicking the official HR document submission portal. Several employees and new hires uploaded their resumes and downloaded pre-filled form templates, believing them to be legitimate. Upon opening the downloaded Word documents, the system silently connected to external servers and fetched additional template data without any user consent or visible macro execution warnings. This bypassed email gateway filters and endpoint antivirus tools, leading to lateral malware spread across systems used by HR, finance, and legal departments.
Digital forensic analysis showed that the documents did not contain visible scripts or macros but relied on hidden structural definitions to retrieve malicious payloads dynamically from attacker-controlled servers.
Which of the following web-based malware distribution techniques best explains the observed behavior?
A. Distribution of malware through compromised browser extensions embedded in PDF rendering engines.
B. Distribution of malware through peer-to-peer file propagation mechanisms within internal networks.
C. Distribution of malware through remotely hosted RTF injection.
D. Distribution of malware through spear-phishing emails that impersonate social media contacts.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
After noticing unusual behavior in certain employee inboxes, such as unexplained message redirection to unfamiliar external services, the IR team suspected account compromise. Despite resetting credentials and terminating active sessions, the unauthorized transfers persisted through embedded configuration anomalies.
Analysts moved to eliminate lingering traces and neutralize the exploitation pathway using precision remediation techniques. Which of the following best supports the eradication effort?
A. Resetting compromised user credentials across all internal apps
B. Sending advisory messages to clients about ongoing suspicious mail
C. Deleting malicious auto-forwarding rules from affected mail clients
D. Auditing logs to determine when phishing emails were received
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
SWA Cloud Services added PKI as one of their cloud security controls. What does PKI stand for?
A. Public key information
B. Public key infrastructure
C. Private key in for ma lion
D. Private key infrastructure
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
During an internal audit following a surge in unauthorized financial transactions, a multinational investment firm's IR team uncovers evidence of an orchestrated campaign targeting senior staff. The attackers had pieced together fragments of sensitive data by mining executive digital footprints, reviewing online publications, and analyzing company-related mentions on external platforms. Later, they engaged directly with employees under fabricated personas, conducting scripted interviews to extract missing identifiers. With the assembled profile data, the adversaries submitted diversion requests for financial correspondence and used these to impersonate executives and execute fraudulent transfers. Forensic analysis revealed no signs of malware infection or system-level compromise. Which technique best aligns with the adversary's method of obtaining the initial sensitive information?
A. Pharming attack that redirected login traffic from internal systems to malicious replicas
B. Social engineering using open-source intelligence followed by pretexting
C. Skimming magnetic card data through modified payment devices in the company cafeteria
D. Phishing through spoofed emails embedded with malicious macros targeting employee laptops
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Raven is a part of an IH&R team and was informed by her manager to handle and lead the removal of the root cause for an incident and to close all attack vectors to prevent similar incidents in the future. Raven notifies the service providers and developers of affected resources. Which of the following steps of the incident handling and response process does Raven need to implement to remove the root cause of the incident?
A. Evidence gathering and forensic analysis
B. Eracicotion
C. Containment
D. Incident triage
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
Aaron, a digital first responder, is dispatched to an R&D lab after a suspected insider data breach involving intellectual property theft. Upon entering the lab, he observes fingerprint smudges on a workstation keyboard, oily residue on a DVD near the printer, and an unplugged USB drive on the desk. He documents the position of each item, uses gloves and evidence tags, covers surfaces to prevent contamination, and restricts access to the area. Which best practice is Aaron demonstrating?
A. Capturing live session activity from open peripherals
B. Isolating system peripherals for digital chain-of-custody
C. Preserving trace-level physical indicators for attribution
D. Safeguarding volatile system state for RAM acquisition
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
A large multinational enterprise recently integrated a digital HR onboarding system to streamline applicant submissions and document collection. During a cybersecurity audit, it was revealed that attackers had set up a phishing site mimicking the official HR document submission portal. Several employees and new hires uploaded their resumes and downloaded pre-filled form templates, believing them to be legitimate. Upon opening the downloaded Word documents, the system silently connected to external servers and fetched additional template data without any user consent or visible macro execution warnings. This bypassed email gateway filters and endpoint antivirus tools, leading to lateral malware spread across systems used by HR, finance, and legal departments.
Digital forensic analysis showed that the documents did not contain visible scripts or macros but relied on hidden structural definitions to retrieve malicious payloads dynamically from attacker-controlled servers.
Which of the following web-based malware distribution techniques best explains the observed behavior?
A. Distribution of malware through compromised browser extensions embedded in PDF rendering engines.
B. Distribution of malware through peer-to-peer file propagation mechanisms within internal networks.
C. Distribution of malware through remotely hosted RTF injection.
D. Distribution of malware through spear-phishing emails that impersonate social media contacts.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
After noticing unusual behavior in certain employee inboxes, such as unexplained message redirection to unfamiliar external services, the IR team suspected account compromise. Despite resetting credentials and terminating active sessions, the unauthorized transfers persisted through embedded configuration anomalies.
Analysts moved to eliminate lingering traces and neutralize the exploitation pathway using precision remediation techniques. Which of the following best supports the eradication effort?
A. Resetting compromised user credentials across all internal apps
B. Sending advisory messages to clients about ongoing suspicious mail
C. Deleting malicious auto-forwarding rules from affected mail clients
D. Auditing logs to determine when phishing emails were received
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
SWA Cloud Services added PKI as one of their cloud security controls. What does PKI stand for?
A. Public key information
B. Public key infrastructure
C. Private key in for ma lion
D. Private key infrastructure
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
Hachimine -
前回送っていただいた問題集で、おかげ様で212-89合格いたしました。