What security concern arises when the system logs reveal that a user has established multiple active sessions from geographically disparate locations within a timeframe that precludes the possibility of physical travel between these points?
Credential spraying across the network
Privilege escalation due to system misconfigurations
Account lockouts due to repeated failed login attempts
Time-of-check (TOC) vs. Time-of-use (TOU) race conditions
The correct response of 'Concurrent sessions from multiple locations' reflects a situation often associated with compromised user credentials, where an attacker has obtained and is using someone else's login details to access systems from different locations simultaneously. This is a red flag for security teams as it indicates a potential account hijacking situation. The other options are incorrect as they either do not pertain directly to the described issue, or they articulate scenarios that aren't necessarily related to concurrent logins from multiple locations.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are 'compromised user credentials' and how can they occur?
Open an interactive chat with Bash
What measures can organizations take to prevent account hijacking?
Open an interactive chat with Bash
What is the significance of monitoring system logs for security?