Back to Network Access Control

Endpoint Security

5 minutes 5 Questions

Endpoint security is a critical element of Network Access Control that involves protecting the individual devices connected to a network. This includes computers, smartphones, or servers, also known as endpoints. Endpoint security aims to ensure that these devices adhere to security policies and do…

Test mode:
Start practice test
CompTIA Network+ - Endpoint Security Example Questions

Test your knowledge of Endpoint Security

Question 1

An organization recently experienced a successful phishing attack, resulting in compromised employee email accounts. Which Endpoint Security measure should be implemented to minimize the risk of future successful phishing attacks?

Correct Answer: Security awareness training

The best Endpoint Security measure against phishing attacks is 'Security awareness training'. This involves educating the employees about the dangers and techniques of phishing attacks, how to recognize them, and how to protect their information. This approach is proactive in empowering employees to identify potential threats before falling victim to them. The other options are not as effective. 'Disable all email attachments' can disrupt important business communication and workflow. 'Toggle user access control to its highest setting' may lead to user dissatisfaction and possible work interruptions because of constant approval requests. And 'Only allow secure communication protocols' might decrease the risk marginally but it won't prevent phishing attacks that come through secure protocols.

Question 2

An employee received an email attachment within a legitimate email from a coworker. After opening the attachment, the employee's computer became infected and started behaving erratically. What is the best course of action?

Correct Answer: Disconnect the employee's computer immediately from the network

The best action to take when an employee's computer gets infected, supposedly by a malicious email attachment, is to disconnect the computer immediately from the network. This is to prevent the possible spread of the malware to other computers within the network. As for the other choices: trying to fix the problem using remote desktop might risk infecting another computer; restarting the computer in regular mode does nothing to remediate the issue; and reinstalling the operating system without first disconnecting the machine runs the risk of spreading the malware more widely across the network.

Question 3

A company suffers from many USB-borne malware infections on its workstations. The internal network's security should be improved by:

Correct Answer: Implementing a USB device control policy

The best way to improve an internal network's security regarding USB-borne malware infections is by 'Implementing a USB device control policy'. Such a policy would ensure rigorous control over the use of USB devices, greatly reducing the risk of malware infections. 'Replacing existing firewalls with AI-based firewalls' might enhance the network security overall but would not specifically address the USB-borne malware issue. 'Encrypting all USB devices using software' could help, but this does not guard against malware entering the network, especially if the malware is on an encrypted device to start with. 'Deploying a security module that monitors keystrokes' can prevent some types of threats but would not necessarily prevent USB-borne malware attacks.

More Endpoint Security questions
13 questions (total)
Start 13 question test