During a forensic review, a script was identified gathering credentials by calling an instance’s metadata endpoint. The attacker leveraged these credentials to reach high-value targets. Which measure helps prevent this exposure in the future?
Activate an advanced data endpoint that uses time-limited tokens when retrieving credentials
Deploy a host-based antivirus solution to detect suspicious processes
Publish patches quickly across all servers to reduce common exploits
Isolate user activities with VLANs within the LAN environment
Enabling a data endpoint that uses time-limited tokens for credential access blocks scripts from freely retrieving sensitive data at the local address. The other options do not offer direct mitigation for unauthorized requests. Host-based antivirus may detect threats, but it does not prevent the use of credentials acquired through the local address. Network segmentation helps control traffic flow but does not address token-based credentials. Patching is essential but does not prevent exposure of data on the local endpoint.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is an instance metadata endpoint?
Open an interactive chat with Bash
How do time-limited tokens enhance security?
Open an interactive chat with Bash
Why won't host-based antivirus or VLANs prevent this type of attack?
Open an interactive chat with Bash
CompTIA Cloud+ CV0-004
Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access