Certified Information Security Manager (CISM) — Question 872

Several critical systems have been compromised with malware. Which of the following is the BEST strategy to eradicate this incident?

Answer options

• A. Reimage the systems.
• B. Block access to the impacted systems.
• C. Perform malware scanning.
• D. Perform a vulnerability assessment.

Correct answer: A

Explanation

Reimaging the systems is the most effective method to ensure that all traces of the malware are removed and that the systems are returned to a clean state. Blocking access to the compromised systems and performing malware scanning may help contain the issue, but they do not fully resolve the infection. A vulnerability assessment is useful for identifying weaknesses but does not directly address the existing malware infection.