Retaining evidence integrity by identifying people coming into contact with evidence
question
Which of the following is an important aspect of evidence gathering?
answer
Backing up all log files and audit trails
question
You have been asked to draft a document related to evidence gathering that contains details about personnel in possession and control of evidence from the time of discovery up through the time of presentation in court.
What type of document is this?
answer
Chain of custody
question
When conducting a forensic investigation, and assuming that the attack has been stopped, which of the following actions should you perform first?
answer
Document whats on the screen
question
The immediate preservation of evidence is paramount when conducting a forensic analysis. Which of the following actions is most likely to destroy critical evidence?
answer
Shutting down the system
question
A security incident is currently occuring on the company network. You discover that the attack involves a computer system that is attached to the network. You're not sure yet exactly what kind of damage is being done to the network systems or data. What action should you take first?
answer
Stop the attack and contain the damage by disconnecting the system from the network
Haven't found what you need?
Search for quizzes and test answers now
Quizzes.studymoose.com uses cookies. By continuing you agree to our cookie policy
