Cysa+ 002 || with 100% Error-free Answers.

An analyst is performing penetration testing and vulnerability assessment activities against a new vehicle automation platform. Which is the MOST likely attack vector being utilized as part of the testing and assessment? A. FaaS B. RTOS C. SoC D. GPS E. CAN bus correct answers E. CAN bus An information security analyst observes anomalous behavior on the SCADA devices in a power plant. This behavior results in the industrial generators overheating and destabilizing the power supply. Which of the following would best identify potential indicators of compromise? A. Use Burp Suite to capture packets to the SCADA devices IP B. Use tcpdump to capture packets to the SCADA devices IP C. Use Wireshark to capture packets between SCADA devices and the management system. D. Use Nmap to capture packets from the management system to the SCADA devices. correct answers C. Use Wireshark to capture packets between SCADA devices and the management system. An analyst is working with a network engineer to resolve a vulnerability that was found in a piece of legacy hardware, which is critical to the operation of the organization's production line. The legacy hardware does not have third-part support, and the OEM manufacturer of the controller is not longer in operation. The analyst documents the activities and verifies these actions prevent remote exploitation of the vulnerability. Which of the following would be the most appropriate to remediate the controller? A. Segment the network to constrain access to administrative interfaces. B. Replace the equipment that has third-party support. C. Remove the legacy hardware from the network. D. Install an IDS on the network between the switch and the legacy equipment. correct answers A. Segment the network to constrain access to administrative interfaces. A small electronics company decides to use a contractor to assist with the development of a new FPGA-based device. Several of the development phases will occur off-site at the contractor's labs. Which of the following is the main concern a security analyst should have with this arrangement? A. Making multiple trips between development sites increases the chance of physical damage to the FPGAs. B. Moving the FPGAs between development sites will lessen the time that is available for security testing. C. Development phases occurring at multiple sites may produce change management issues. D. FPGA applications are easily cloned, increasing the possibility of intellectual property theft. correct answers D. FPGA applications are easily cloned, increasing the possibility of intellectual property theft.