CompTIA Security+ (SY0-701) — Question 462

An engineer has ensured that the switches are using the latest OS, the servers have the latest patches, and the endpoints' definitions are up to date. Which of the following will these actions most effectively prevent?

Answer options

• A. Zero-day attacks
• B. Insider threats
• C. End-of-life support
• D. Known exploits

Correct answer: D

Explanation

These actions primarily protect against known exploits, as they ensure that vulnerabilities that have already been identified are patched and mitigated. Zero-day attacks target unknown vulnerabilities and cannot be prevented through updates alone. Insider threats and end-of-life support are not directly addressed by updating software and definitions.