Certified Network Defender (CND) — Question 160

Which among the following is used by anti-malware systems and threat intelligence platforms to spot and stop malicious activities at an initial stage?

Answer options

• A. Indicators of attack
• B. Key risk indicators
• C. Indicators of compromise
• D. Indicators of exposure

Correct answer: C

Explanation

The correct answer, 'Indicators of compromise', refers to pieces of forensic evidence that suggest a breach has occurred. Options A, B, and D do not specifically address the detection of malicious activities; instead, they relate to different aspects of risk assessment and exposure management.