CompTIA CASP+ (CAS-003) — Question 386

A security analyst is reviewing weekly email reports and finds an average of 1,000 emails received daily from the internal security alert email address. Which of the following should be implemented?

Answer options

• A. Tuning the network monitoring service
• B. Separation of duties for systems administrators
• C. Machine learning algorithms
• D. DoS attack prevention

Correct answer: D

Explanation

The correct answer is D because receiving an unusually high volume of emails from a security alert address may indicate a Denial of Service (DoS) attack. Options A, B, and C do not directly address the issue of excessive emails that could overwhelm the system, making them less relevant in this context.