Palo Alto Networks Certified Detection and Remediation Analyst (PCDRA) — Question 23

Network attacks follow predictable patterns. If you interfere with any portion of this pattern, the attack will be neutralized. Which of the following statements is correct?

Answer options

• A. Cortex XDR Analytics allows to interfere with the pattern as soon as it is observed on the firewall.
• B. Cortex XDR Analytics does not interfere with the pattern as soon as it is observed on the endpoint.
• C. Cortex XDR Analytics does not have to interfere with the pattern as soon as it is observed on the endpoint in order to prevent the attack.
• D. Cortex XDR Analytics allows to interfere with the pattern as soon as it is observed on the endpoint.

Correct answer: D

Explanation

The correct answer is D because Cortex XDR Analytics is designed to take action as soon as it identifies suspicious activity at the endpoint, thereby neutralizing the attack. Options A and B incorrectly suggest that action is only taken at the firewall or not taken at the endpoint, while option C misinterprets the necessity of immediate intervention to prevent an attack.