Palo Alto Networks System Engineer – Prisma Cloud — Question 53

Prevention against which type of attack is configurable in Web-Application and API Security (WAAS)?

Answer options

• A. credential stuffing
• B. cross-site scripting (XSS)
• C. shoulder surfing
• D. distributed denial of service (DDoS)

Correct answer: B

Explanation

The correct answer is B, as WAAS is specifically designed to mitigate threats like cross-site scripting (XSS) by filtering and monitoring web traffic. Options A, C, and D represent different types of attacks that WAAS may not directly address, as credential stuffing and DDoS require different protective measures, while shoulder surfing is a physical security concern.