CompTIA Security+ (SY0-701) — Question 237

Which of the following is used to protect a computer from viruses, malware, and Trojans being installed and moving laterally across the network?

Answer options

• A. IDS
• B. ACL
• C. EDR
• D. NAC

Correct answer: C

Explanation

EDR (Endpoint Detection and Response) is specifically designed to detect and respond to threats, including viruses and malware, thereby preventing their lateral movement across the network. IDS (Intrusion Detection System) monitors for malicious activities but does not actively prevent them. ACL (Access Control List) regulates access but does not focus on malware protection. NAC (Network Access Control) manages devices on the network but is not primarily aimed at malware detection.