CompTIA Security+ (SY0-701) — Question 322

A malicious actor conducted a brute-force attack on a company's web servers and eventually gained access to the company's customer information database. Which of the following is the most effective way to prevent similar attacks?

Answer options

• A. Regular patching of servers
• B. Web application firewalls
• C. Multifactor authentication
• D. Enabling encryption of customer data

Correct answer: C

Explanation

Multifactor authentication adds an additional layer of security by requiring more than one form of verification before granting access, making it significantly harder for unauthorized users to gain entry. While regular patching, web application firewalls, and data encryption are important security measures, they do not directly address the risk posed by brute-force attacks as effectively as multifactor authentication does.