CompTIA CySA+ (CS0-002) — Question 375
A company frequently experiences issues with credential stuffing attacks. Which of the following is the BEST control to help prevent these attacks from being successful?
Answer options
- A. SIEM
- B. IDS
- C. MFA
- D. TLS
Correct answer: C
Explanation
Multi-Factor Authentication (MFA) is the best control for preventing credential stuffing attacks as it requires users to provide multiple forms of verification, making it more difficult for attackers to gain unauthorized access even if they have the correct credentials. SIEM and IDS are useful for monitoring and detecting attacks, but they do not actively prevent unauthorized access. TLS is important for securing data in transit but does not address the issue of credential stuffing directly.