CySA+ CS0-001 – Q. 332

0
23

A SIEM alert occurs with the following output:

Which of the following BEST describes this alert?

A. The alert is a false positive; there is a device with dual NICs
B. The alert is valid because IP spoofing may be occurring on the network
C. The alert is a false positive; both NICs are of the same brand
D. The alert is valid because there may be a rogue device on the network

LEAVE A REPLY

Please enter your comment!
Please enter your name here