During an internal investigation of suspected data theft, the incident response team collects a laptop from an employee’s desk. To preserve admissibility of evidence, which of the following is the MOST important step to take FIRST? A. Create a forensic image of the laptop using a write blocker. B. Power down the laptop to prevent further tampering. C. Document the time, date, and individuals involved in seizing the device. D. Secure the laptop in a locked evidence cabinet.

XYZ Corporation is developing a new web application and wants to ensure that it is protected against common security threats like SQL injection and cross-site scripting (XSS). They have decided to implement input validation as a primary security measure. What is the most effective way to implement input validation to mitigate these threats? Options: A. Use client-side validation to check inputs before submission to the server. B. Implement server-side validation to check all inputs against a defined set of rules. C. Rely solely on web application firewalls to detect and block malicious inputs. D. Utilize automated testing tools to identify and fix vulnerabilities during development.

I need 3-4 people to beta test the new full CAT exam CISSP module I developed. Ideally you have taken the actual CISSP before (attempted or passed). Please DM me if interested. In the next 2-3 days this will be included for anyone with a www.cissp.app subscription!

25 iOS users can join the beta here. 🎯 What You Can Do: - Upload your own practice questions - Generate unlimited new ones with AI - Take full mock exams & practice tests - Track progress and improvement Please let me know your feedback! (Android coming ASAP)

An organization is experiencing a distributed denial-of-service (DDoS) attack that is overwhelming its internet bandwidth. Which of the following is the MOST effective immediate response? A Unplugging the primary internet connection. B Contacting their upstream internet service provider (ISP) for assistance. C Blacklisting the source IP addresses of the attack traffic. D Reconfiguring the firewall to block the malicious traffic.