Implementing and Operating Cisco Security Core Technologies (SCOR) — Question 58

What does Cisco AMP for Endpoints use to help an organization detect different families of malware?

Answer options

• A. Tetra Engine to detect malware when the endpoint is connected to the cloud
• B. ClamAV Engine to perform email scanning
• C. Spero Engine with machine learning to perform dynamic analysis
• D. Ethos Engine to perform fuzzy fingerprinting

Correct answer: D

Explanation

The correct answer is D, as the Ethos Engine is specifically designed for fuzzy fingerprinting, which helps in identifying different malware families. Options A, B, and C refer to other engines that serve different purposes and do not specifically address the detection of various malware families.