It was recently discovered that many of an organization’s servers were running unauthorized cryptocurrency mining software. Which of the following assets were being targeted in this attack? (Choose two.)

1. A. Power resources
2. B. Network resources
3. C. Disk resources
4. D. Computing resources
5. E. Financial resources

Correct Answer: AB

An incident responder has collected network capture logs in a text file, separated by five or more data fields. Which of the following is the BEST command to use if the responder would like to print the file (to terminal/ screen) in numerical order?

1. A. cat | tac
2. B. more
3. C. sort –n
4. D. less

Correct Answer: C

An incident response team is concerned with verifying the integrity of security information and event management (SIEM) events after being written to disk. Which of the following represents the BEST option for addressing this concern?

1. A. Time synchronization
2. B. Log hashing
3. C. Source validation
4. D. Field name consistency

Correct Answer: A