Which of the following is the strongest indicator of exfiltration over non-standard channels?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $25.99Unlock all

Prepare for the Security Operations Exam with targeted practice questions. Enhance your understanding with detailed explanations and tips to successfully pass your exam!

Multiple Choice

Which of the following is the strongest indicator of exfiltration over non-standard channels?

The strongest signal of exfiltration over non-standard channels is encrypted payloads being transmitted to unfamiliar endpoints. This combination directly points to data leaving your network: the payloads are hidden by encryption so content inspection is less effective, and the destinations are not part of normal, approved operations, indicating a covert data transfer to an external host. In contrast, a spike in CPU usage can have many benign causes, failed login attempts relate to access control rather than data leaving the network, and outbound traffic to known cloud services during business hours may be legitimate or obvious but doesn’t necessarily imply a non-standard exfiltration channel.

Which of the following is the strongest indicator of exfiltration over non-standard channels?

Prepare for the Security Operations Exam with targeted practice questions. Enhance your understanding with detailed explanations and tips to successfully pass your exam!

Which of the following is the strongest indicator of exfiltration over non-standard channels?

Get the latest from Passetra