The discovery and response section focuses on which three options? (Choose three.)1 pointtimeline of the eventsestimating the magnitude of the lossescategorizing the varieties of losses experiencedhow the incident was discoveredlessons learned during the response and remediation processcapturing a qualitative assessment of the overall effect on the organizationgeneral information about the incidentorganization that is affected by the incident5.Question 5In the categories of threat actions, how is hacking

The discovery and response section focuses on which three options? (Choose three.)1 pointtimeline of the eventsestimating the magnitude of the lossescategorizing the varieties of losses experiencedhow the incident was discoveredlessons learned during the response and remediation processcapturing a qualitative assessment of the overall effect on the organizationgeneral information about the incidentorganization that is affected by the incident

A security breach has happened at a major corporation. The incident team has responded and executed their incident response plan. During which phase are lessons learned applied?Select one:analyzecontainmentrecoverypreparationpost-incidentdetection

1.Question 1The best way to describe hacking is as a single effort or activity conducted quickly and effortlessly by the threat actor.1 pointTrueFalse2.Question 2Spear phishing is a tactic in which part of the Lockheed Martin Attack Kill Chain Model?1 pointDeliveryReconnaissanceWeaponizationInstallationCommand and Control3.Question 3Investigating the organizational chart of a target is part of which phase of the Lockheed Martin Attack Kill Chain Model?1 pointDeliveryReconnaissanceWeaponizationInstallationCommand and Control4.Question 4IT System Administrators often can easily identify who attackers are and submit their identities to law enforcement for prosecution.1 pointTrueFalse5.Question 5The phase of the hacking process where a threat actor’s code is executed onto a victim’s device is called:1 pointDeliveryReconnaissanceExploitationInstallationCommand and Control6.Question 6Writing an exploit to leverage a vulnerability in the windows 10 operating system would be included in which phase of the Lockheed Martin Cyber Kill Chain?1 pointDeliveryReconnaissanceWeaponizationInstallationCommand and Control7.Question 7The use of _______ often makes it difficult for victims of cyber-attack to identify the threat actor involved.1 pointsocial mediaIXPproxy serversISProuters8.Question 8Attribution can be difficult for victims of cyber attack primarily due to: 1 pointThe difficulty for IT workers to work with technology in their own networkThe interplay between proxies, encryption, and threat actors hiding in plain network trafficThe difficulty of security organizations to communicate with one anotherThe generally slow nature of government response to cyber attackNone of the Above

Question 5In the categories of threat actions, how is hacking defined by VERIS?1 pointHacking is defined as “all attempts to intentionally access or harm information assets without (or exceeding) authorization by circumventing or thwarting logical security mechanisms."Hacking is defined as “use of deception, intimidation, or manipulation to exploit the human element.”Hacking is defined as “any malicious software, script, or code that is run on a device that alters its state or function without the owner’s informed consent."Hacking is defined as the use of entrusted organizational resources or privileges for any purpose contrary to what was intend

Which phase of an incident response playbook is primarily concerned with preventing further damage and reducing the immediate impact of a security incident?1 pointDetection and analysisPost-incident activityContainmentPreparation