Containment
Which containment technique is the strongest possible response to an incident?
Removal
What agency recommends investigations maintain evidence logs?
NIST (National Institute of Standards and Technology)
What is the 1st activity that takes place after an incident occurs?
Containment
What super hero is fast?
Flash
Containment activities seek to limit the ________ of an incident.
Impact / spread
Why would evidence be preserved?
Criminal or civil action
What is the 2nd activity that takes place after an incident occurs?
Eradication
How did Captain America get his powers?
Super Soldier Serum
What containment strategy moves a suspected compromised system to a quarantine VLAN?
Segmentation
How is a company drive with sensitive information disposed of?
Purge
What is the 3rd activity that takes place after an incident occurs?
Recovery
Who is not an Avenger? Thor, Hulk, Batman, Iron Man
Batman
What evidence is volatile in nature and may not be available later?
Memory
How is a flash drive with sensitive information disposed of that belongs to an outside contractor?
Destruction
Which phase focuses on restoring normal operations?
Recovery
Who is not on the Justice League? Batman, Captain America, Green Lantern, Aquaman
Captain America
What is critical to conducting a solid incident recovery effort?
Root cause of the attack
Another word for purging data?
Degaussing
What is one of the post incident activities?
Change Control Processes, After Action session, and Final Report
Who is the lead female in the Justice League?
Wonder Woman