CompTIA CySA+ (CS0-003) — Question 272

A cybersecurity analyst is recommending a solution to ensure emails that contain links or attachments are tested before they reach a mail server. Which of the following will the analyst most likely recommend?

Answer options

• A. Sandboxing
• B. MFA
• C. DKIM
• D. Vulnerability scan

Correct answer: A

Explanation

Sandboxing is the correct answer because it allows for the safe execution of potentially harmful emails in a controlled environment, preventing threats before they reach the mail server. MFA, while important for securing accounts, does not address email content. DKIM is used for verifying email integrity and sender authenticity, but it doesn't test the content of the emails. A vulnerability scan identifies weaknesses in systems but does not specifically analyze email content.