Google Workspace Professional Administrator — Question 123

Your organization was recently targeted by a phishing attempt that affected several users. You must efficiently determine the full extent of the phishing attempt and prevent further issues from occurring. What should you do?

Answer options

• A. 1. Search BigQuery logs for all messages marked as phishing. 2. Require Transport Layer Security (TLS) for all email communications. 3. Instruct all users to reset their passwords.
• B. 1. Use email log search to pull all emails for the past three days. 2. Analyze logs of common emails received and contact users. 3. Instruct users on how to create a Gmail filter to block malicious email addresses.
• C. 1. Use the security dashboard to view the number of messages showing evidence of potential spoofing, and then use the investigation tool on affected users to remove malicious email. 2. Enable advanced phishing and malware protection. 3. Deploy Google's Password Alert extension for Chrome.
• D. 1. Collect phishing samples forwarded from users. 2. Add IP addresses and email addresses to your denylist. 3. Enroll only affected users to multi-factor authentication (MFA).

Correct answer: C

Explanation

Option C is correct because it involves using the security dashboard to assess the phishing attack's impact and employing tools to mitigate future threats. Options A and B focus on analyzing past emails and user actions, which are less effective in addressing ongoing issues. Option D, while it suggests blocking threats, does not comprehensively address the assessment and prevention of phishing attacks.