CompTIA A+ Core 2 (220-1002) — Question 19

A computer becomes infected with malware, which manages to steal all credentials stored on the PC. The malware then uses elevated credentials to infect all other PCs at the site. Management asks the IT staff to take action to prevent this from reoccurring.
Which of the following would BEST accomplish this goal?

Answer options

• A. Use an antivirus product capable of performing heuristic analysis
• B. Use a host-based intrusion detection system on each computer
• C. Disallow the password caching of accounts in the administrators group
• D. Install a UTM in between PC endpoints to monitor for suspicious traffic
• E. Log all failed login attempts to the PCs and report them to a central server

Correct answer: A

Explanation

The correct answer is A because an antivirus product with heuristic analysis can detect and block malware based on behavior rather than just signatures, which is crucial for preventing future infections. Options B, C, D, and E focus on monitoring or restricting access but do not actively prevent malware from executing or spreading effectively like a heuristic-capable antivirus can.