CrowdStrike Certified Falcon Administrator (CCFA) — Question 231

Which of the follow should be used with extreme caution because it may introduce additional security risks such as malware or other attacks which would not be recorded, detected, or prevented based on the exclusion syntax?

Answer options

Correct answer: B

Explanation

The correct answer is B, Sensor Visibility Exclusion, as it can lead to serious security vulnerabilities that may not be monitored or addressed. The other options, while they may also involve exclusions, do not carry the same level of risk associated with undetected attacks.