Implementing and Operating Cisco Security Core Technologies (SCOR) — Question 49

After a recent breach, an organization determined that phishing was used to gain initial access to the network before regaining persistence. The information gained from the phishing attack was a result of users visiting known malicious websites. What must be done in order to prevent this from happening in the future?

Answer options

• A. Modify web proxy settings.
• B. Modify outbound malware scanning policies.
• C. Modify identification profiles.
• D. Modify an access policy.

Correct answer: A

Explanation

The correct answer is A because modifying web proxy settings can help block access to malicious websites, thus preventing users from being exposed to phishing attacks. Options B, C, and D do not directly address the issue of users visiting harmful sites, making them less effective in preventing future breaches related to phishing.