CompTIA SecurityX (CAS-005) — Question 265

After remote desktop capabilities were deployed in the environment various vulnerabilities were noticed:

• Exfiltration of intellectual property
• Unencrypted files
• Weak user passwords

Which of the following is the best way to mitigate these vulnerabilities? (Choose two.)

Answer options

• A. Implementing data loss prevention
• B. Deploying file integrity monitoring
• C. Restricting access to critical file services only
• D. Deploying directory-based group policies
• E. Enabling modem authentication that supports MFA
• F. Implementing a version control system
• G. Implementing a CMDB platform

Correct answer: A, D

Explanation

Implementing data loss prevention (DLP) helps to prevent the unauthorized transfer of sensitive information, directly addressing the risk of intellectual property exfiltration. Deploying directory-based group policies can enforce stronger password policies and security settings across the environment, mitigating risks associated with weak user passwords. The other options either do not adequately address the specific vulnerabilities or are not as effective in this context.