Question

ABC Inc. offers a number of services though its web site. During one day, senior executivesof ABC Inc. were surprised to discover that sensitive data on their servers were being leaked to unauthorized individuals on the Internet. Post-incident investigations revealed that ABC Inc.'s key servers were infected with a Trojan. The incident occurredafter deployment of a newly acquired module from a software vendor, which was tested on test servers in accordance with functional specifications. The incident had gone unnoticed for a period of about four weeks. A potential cause of the leak may have been malware embedded in the new module. Which of the following measures could have prevented communication to dubious hosts?

A.Encryption of server data
B.Updated antivirus software
C.Intrusion detection/intrusion prevention systems (IDSs/IPSs)
D.Secure sockets layer (SSL)/transport layer security (TLS)

Answer 1

C.Intrusion detection/intrusion prevention systems (IDSs/IPSs)

Step-by-step explanation:

Since the problem occurred at the server-side, it would be irrelevant to update the on-premises antivirus program. However, an IDS or IPS would be able to detect suspicious and malicious activity in the whole network system, by examining the network traffic that usually indicates the path of a Trojan or other virus.