John, a network administrator, notices a sudden spike in outbound traffic from a single workstation in the organization. Upon further investigation, he discovers that the workstation is contacting multiple external IP addresses. This could be indicative of which type of threat?
- Botnet Infection
- Data Exfiltration
- Insider Threat
- Malware Infection
The sudden spike in outbound traffic from a workstation contacting multiple external IP addresses is a strong indicator of a botnet infection. A botnet is a network of compromised devices controlled by an attacker, often used for various malicious activities, including sending spam or launching DDoS attacks.
Loading...
Related Quiz
- An organization implements a new software solution and within a week receives a message on their server stating that their data has been encrypted and will only be released upon payment. Which type of cybersecurity threat is this scenario depicting?
- After implementing a new firewall rule, a company's remote employees suddenly cannot access the internal network through the VPN. The IT team suspects the rule is blocking the VPN traffic. To address this issue without compromising security, what should they consider adjusting in the firewall?
- When a policy violation occurs, the CSP can be configured to send a report to a specified URI using the _______ directive.
- Spear phishing and vishing are both techniques used in what kind of cyber attack?
- Digital certificates often use the _______ format, which includes the certificate's public key and information about the key owner.