Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Eccouncil Exam 312-39 Topic 2 Question 86 Discussion

Actual exam question for Eccouncil's 312-39 exam
Question #: 86
Topic #: 2
[All 312-39 Questions]

If the SIEM generates the following four alerts at the same time:

1. Firewall blocking traffic from getting into the network alerts

II. SQL injection attempt alerts

III. Data deletion attempt alerts

IV. Brute-force attempt alerts

Which alert should be given least priority as per effective alert triaging?

Show Suggested Answer Hide Answer
Suggested Answer: D

Contribute your Thoughts:

Venita
4 months ago
I don't know, man. Brute-force attempts can be pretty nasty. I'm going to have to go with IV on this one. Gotta keep those hackers out, you know?
upvoted 0 times
...
Otis
4 months ago
Haha, the firewall blocking traffic? That's like the equivalent of a toddler trying to break into Fort Knox. Definitely the least of our worries here.
upvoted 0 times
Stefania
3 months ago
Yeah, we should focus on the other alerts first.
upvoted 0 times
...
Rosenda
3 months ago
I agree, the firewall blocking traffic alert is not a big deal.
upvoted 0 times
...
...
In
4 months ago
Hmm, I'm not so sure. If someone's trying to delete data, that could be a sign of a bigger issue. I'd still want to look into that one, even if the other alerts seem more urgent.
upvoted 0 times
Pearly
3 months ago
I agree with Vernell, data deletion attempt alert should be given least priority.
upvoted 0 times
...
Vernell
3 months ago
But what about the SQL injection attempt alert? That could be a serious threat too.
upvoted 0 times
...
Kris
3 months ago
I think we should prioritize the data deletion attempt alert.
upvoted 0 times
...
...
Beckie
4 months ago
I agree with Lashaunda, SQL injection attempts are common but may not always result in a successful breach, so it should be given least priority.
upvoted 0 times
...
Lashaunda
4 months ago
I think the least priority alert should be II because SQL injection attempts are more common and may not always be successful.
upvoted 0 times
...
Chara
4 months ago
I disagree, I believe the least priority alert should be IV.
upvoted 0 times
...
Lashon
5 months ago
The data deletion attempt is definitely the least concerning. I mean, who cares about a little data deletion when we've got SQL injection and brute-force attempts happening? Easy choice here.
upvoted 0 times
Willow
4 months ago
D) 1
upvoted 0 times
...
Jacinta
4 months ago
C) II
upvoted 0 times
...
Clay
5 months ago
B) IV
upvoted 0 times
...
Aleta
5 months ago
A) III
upvoted 0 times
...
...
Peggie
5 months ago
I think the least priority alert should be III.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77