You are the security officer for an organisation that owns a large amount of intellectual property. Which of the following is its least appropriate cyber$-$defence?

Question $39$ Answer

a$.$

Implementing an Endpoint Protection Platform

b$.$

Using TLS$/$SSL v$1\mathrm{.}2$ across the network.

c$.$

Scheduling of frequent, verifiable backups.

d$.$

Frequent application of security patches.

e$.$

Segmentation of the network.

Question $40$

Answer saved

Marked out of $2\mathrm{.}00$

Flag question

Question text

As Security Officer, you become aware of a SQL Injection vulnerability in your organisation$$s server. Which of the following actions is the most effective remedy?

Question $40$ Answer

a$.$

Correct output encoding, escaping, and quoting of user inputted data.

b$.$

Installation of the most up to date anti$-$virus software.

c$.$

Use denylists to block dangerous or risky user input.

d$.$

Staff training on social engineering.

e$.$

Filter open network ports.