What should the engineer do next?

– by 4

An IT security engineer notices that the company’s web server is currently being hacked. What should the engineer do next?
A. Unplug the network connection on the company’s web server.
B. Determine the origin of the attack and launch a counterattack.
C. Record as much information as possible from the attack.
D. Perform a system restart on the company’s web server.

EC-Council Certified Ethical Hacker v11

Free dumps for 312-50v11 in Printable PDF format.

High quality PDF and software. VALID exam to help you pass.

Download Printable PDF. VALID exam to help you PASS.

4 thoughts on “What should the engineer do next?

  1. A is not correct because, Security engineer doesn’t necessary have the rights/permission to do the same, and it may incur the company a loss of money depending upon the business.

    Reply

    1. incident must be contained in the first instance. A is the only answer that 100% contains the incident.

      Reply

  3. Why not try and contain the situation by doing A? (A. Unplug the network connection on the company’s web server.)

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *


The reCAPTCHA verification period has expired. Please reload the page.