CompTIA A+ Core 2 (220-1102) — Question 35

The Chief Executive Officer at a bank recently saw a news report about a high-profile cybercrime where a remote-access tool that the bank uses for support was also used in this crime. The report stated that attackers were able to brute force passwords to access systems. Which of the following would BEST limit the bank's risk? (Choose two.)

Answer options

• A. Enable multifactor authentication for each support account.
• B. Limit remote access to destinations inside the corporate network.
• C. Block all support accounts from logging in from foreign countries.
• D. Configure a replacement remote-access tool for support cases.
• E. Purchase a password manager for remote-access tool users.
• F. Enforce account lockouts after five bad password attempts.

Correct answer: A, F

Explanation

Enabling multifactor authentication (A) significantly enhances security by requiring additional verification beyond just passwords, making unauthorized access much harder. Enforcing account lockouts after five failed attempts (F) helps to mitigate brute-force attacks by locking out accounts after several incorrect password entries. The other options, while potentially useful, do not directly address the immediate risk of password brute-forcing as effectively as options A and F.