CompTIA CASP+ (CAS-004) — Question 295

An ISP is receiving reports from a portion of its customers who state that typosquatting is occurring when they type in a portion of the URL for the ISP’s website. The reports state that customers are being directed to an advertisement website that is asking for personal information. The security team has verified the DNS system is returning proper results and has no known IOCs. Which of the following should the security team implement to best mitigate this situation?

Answer options

• A. DNSSEC
• B. DNS filtering
• C. Multifactor authentication
• D. Self-signed certificates
• E. Revocation of compromised certificates

Correct answer: B

Explanation

The correct answer is B, DNS filtering, as it can help block access to malicious websites that could be linked to typosquatting. Options A, C, D, and E are not directly aimed at preventing users from being redirected to fraudulent sites, making them less effective in this specific scenario.