CompTIA CASP+ (CAS-003) — Question 260

A threat advisory alert was just emailed to the IT security staff. The alert references specific types of host operating systems that can allow an unauthorized person to access files on a system remotely. A fix was recently published, but it requires a recent endpoint protection engine to be installed prior to running the fix.
Which of the following MOST likely need to be configured to ensure the system are mitigated accordingly? (Choose two.)

Answer options

• A. Antivirus
• B. HIPS
• C. Application whitelisting
• D. Patch management
• E. Group policy implementation
• F. Firmware updates

Correct answer: A, D

Explanation

The correct answers are A and D because having an updated Antivirus ensures that known threats are detected and managed, while Patch management is crucial to apply the recent fix that addresses vulnerabilities. The other options, while important for security, do not directly relate to applying the necessary fix or preventing the specific unauthorized access described in the advisory.