SNCF — Securing Networks with Firepower — Question 16
An organization has noticed that malware was downloaded from a website that does not currently have a known bad reputation. How will this issue be addressed globally in the quickest way possible and with the least amount of impact?
Answer options
- A. by creating a URL object in the policy to block the website.
- B. Cisco Talos will automatically update the policies.
- C. by denying outbound web access
- D. by isolating the endpoint
Correct answer: A
Explanation
Creating a URL object to block the website is the most immediate and targeted response, preventing further access to the malicious site. While Cisco Talos does provide updates, relying on that may take longer and doesn't directly address the specific threat. Denying outbound web access is too broad and could disrupt legitimate traffic, and isolating the endpoint does not prevent others from accessing the site.