CompTIA Security+ (SY0-501) — Question 922

A security administrator learns that PII, which was gathered by the organization, has been found in an open forum. As a result, several C-level executives found their identities were compromised, and they were victims of a recent whaling attack.
Which of the following would prevent these problems in the future? (Choose two.)

Answer options

• A. Implement a reverse proxy.
• B. Implement an email DLP.
• C. Implement a spam filter.
• D. Implement a host-based firewall.
• E. Implement a HIDS.

Correct answer: B, C

Explanation

Implementing an email DLP (Data Loss Prevention) solution helps to prevent sensitive information from being sent out via email, reducing the risk of data breaches. A spam filter can further protect against phishing attempts that often lead to whaling attacks, by filtering out malicious emails. The other options, while valuable for security, do not directly address the prevention of PII leakage or phishing threats.