CompTIA CASP+ (CAS-004) — Question 257
During an incident, an employee's web traffic was redirected to a malicious domain. The workstation was compromised, and the attacker was able to modify sensitive data from the company file server. Which of the following solutions would have BEST prevented the initial compromise from happening? (Choose two.)
Answer options
- A. DNSSEC
- B. FIM
- C. Segmentation
- D. Firewall
- E. DLP
- F. Web proxy
Correct answer: A, F
Explanation
DNSSEC would have ensured the authenticity of DNS responses, preventing redirection to malicious domains. A web proxy could have acted as a filter, blocking access to harmful sites, thereby stopping the initial compromise from occurring. The other options, while beneficial for security, do not directly address the issue of DNS manipulation or web traffic redirection.