CompTIA CASP+ (CAS-003) — Question 223

A large, public university has recently been experiencing an increase in ransomware attacks against computers connected to its network. Security engineers have discovered various staff members receiving seemingly innocuous files in their email that are being run. Which of the following would BEST mitigate this attack method?

Answer options

• A. Improving organizations email filtering
• B. Conducting user awareness training
• C. Upgrading endpoint anti-malware software
• D. Enabling application whitelisting

Correct answer: B

Explanation

User awareness training is crucial as it educates employees about recognizing phishing attempts and malicious files, which can significantly reduce the risk of ransomware infections. While email filtering and anti-malware software are important, they may not fully prevent users from opening harmful files. Application whitelisting is effective but may not directly address the issue of user behavior in this scenario.