SnowPro Advanced: Architect — Question 37

The IT Security team has identified that there is an ongoing credential stuffing attack on many of their organization’s system.
What is the BEST way to find recent and ongoing login attempts to Snowflake?

Answer options

• A. Call the LOGIN_HISTORY Information Schema table function.
• B. Query the LOGIN_HISTORY view in the ACCOUNT_USAGE schema in the SNOWFLAKE database.
• C. View the History tab in the Snowflake UI and set up a filter for SQL text that contains the text "LOGIN".
• D. View the Users section in the Account tab in the Snowflake UI and review the last login column.

Correct answer: A

Explanation

The correct answer is A because the LOGIN_HISTORY Information Schema table function provides detailed and specific information about login attempts, making it the best choice for identifying credential stuffing attacks. Option B, while useful, may not be as immediate or detailed as the table function. Options C and D rely on UI-based methods that may not provide comprehensive or real-time data compared to querying the schema directly.