You are an email administrator for a large company. Recently a series of emails were sent from a user's email account that the user claims not to have sent. How should you proceed?
Ask the user to please stop sending the emails
Disable the email and provide a new account to the user
Tighten firewall restrictions to block the SMTP port (25)
Disable the user account, reset the password and run an anti-malware scan on the user's PC
You should assume the user's login and PC are compromised. Its possible that the PC has malware that was used to send the emails, steal the user's password or that only the account credentials were compromised and the PC is not infected. Until you can determine how the credentials were compromised, you should assume anything that belongs to the user is unsafe.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the significance of disabling the user's account?
Open an interactive chat with Bash
Why is it important to reset the password?
Open an interactive chat with Bash
What role does an anti-malware scan play in this process?