Home » Cisco » 210-255 » Which category does this event fall under as defined in the Diamond Model of Intrusion?

Which category does this event fall under as defined in the Diamond Model of Intrusion?

08/09/2017 – by Mod_GuideK 10

You see confidential data being exfiltrated to an IP address that is attributed to a known Advanced Persistent Threat group. Assume that this is part of a real attach and not a network misconfiguration. Which category does this event fall under as defined in the Diamond Model of Intrusion?
A. reconnaissance
B. weaponization
C. delivery
D. action on objectives

SHOW ANSWERS

10 thoughts on “Which category does this event fall under as defined in the Diamond Model of Intrusion?”

Yair says:

04/06/2018 at 4:53 PM

Correct answer is D.
It is an Advanced Persistent Threat group that being exfiltrated confidential data, and Action and Objectives says that adversary is inside the network and starting to achieve his or her objective for launching the attack. An adversary could use this opportunity to steal data.

Reply
Allan0005 says:

03/19/2018 at 1:06 AM

kkkkkk D is the answer l gues VCE was tired…

Reply
Ray says:

03/17/2018 at 6:49 PM

Book page # 265
Actions and objectives
Answer = D

Reply
Diego R. says:

02/27/2018 at 2:44 PM

Definitively, the answer is D.

Reply
Nemo says:

02/08/2018 at 6:33 PM

Answer is D

Reply
Daniel Espinonsa says:

02/01/2018 at 7:45 PM

D. final action or objective (data being exfiltrated to an IP address)

Reply
BG says:

02/01/2018 at 2:47 PM

Answer is A

Reply
1. BG says:
  
  02/01/2018 at 2:48 PM
  
  Sorry D
  
  Reply
RB says:

01/07/2018 at 7:24 AM

Correct answer is D.

Reply
AJ says:

01/06/2018 at 1:39 PM

Answer is D

Reply

10 thoughts on “Which category does this event fall under as defined in the Diamond Model of Intrusion?”

Leave a Reply Cancel reply