New Enroll in RBI Grade B New Batch - Starts on May 21

    Question

    A company uses a firewall to filter incoming and

    outgoing network traffic. Despite this, an attacker successfully accesses the network through a vulnerability in an employee’s workstation. Which additional security measure would have helped prevent this attack?
    A Use of a hardware-based firewall. Correct Answer Incorrect Answer
    B Implementing endpoint detection and response (EDR) tools. Correct Answer Incorrect Answer
    C Increasing firewall rules for inbound traffic. Correct Answer Incorrect Answer
    D Disabling VPN access for remote employees. Correct Answer Incorrect Answer
    E Restricting access to social media on office computers. Correct Answer Incorrect Answer

    Solution

    A firewall is effective for filtering network traffic but cannot secure endpoints, such as employee workstations, against vulnerabilities or targeted attacks. Endpoint Detection and Response (EDR) tools: 1. Monitor and analyze endpoint activities for suspicious behavior. 2. Detect and mitigate threats like malware or unauthorized access in real-time. 3. Provide visibility into individual devices, complementing network-level defenses. By implementing EDR, organizations gain robust protection for endpoints, reducing the likelihood of breaches. Why Other Options Are Incorrect: • A) Hardware-based firewall: Enhances performance but does not protect endpoints directly. • C) Increasing firewall rules: Focuses only on network traffic, leaving endpoints vulnerable. • D) Disabling VPN access: Restricting remote access doesn't address the workstation’s vulnerability. • E) Restricting social media: While reducing distractions, this measure doesn’t enhance security.

    Practice Next