WGU D488 OA PREP CYBERSECURITY
ARCHITECTURE & ENGINEERING EXAM TEST
BANK 4 | COMPLETE 2025 ACTUAL EXAM
WITH CORRECT VERIFIED ANSWERS |
GUARANTEED A+ EXAM EXCELLENCE
A security architect is designing a strategy to help continue operating in
the face of a cyber-attack. Which of the following will help to
accomplish this objective? Select 3 answers.
A - Heterogeneity
B - Clustering
C - COA development
D - Migrating to the cloud - ✔✔✔ Correct Answer > A, B & C;
Heterogeneity, Clustering, COA Development
Heterogeneity (or diversity) refers to components that are not the
same as or similar to each other. This diversity adds a layer of
complexity that can slow an adversary from infiltrating an enterprise
before detection.
Clustering allows multiple redundant processing nodes that share
data with one another to accept connections, providing redundancy.
,Part of a resilience strategy is to apply some course of action (COA)
development in response to specific events. COA helps to respond
accordingly in a prepared manner.
Migrating to the cloud will not help protect organizations if they do
not apply a defense in depth security approach. The cloud might make
it easier to do, but they still have to do it.
Which security technique should be used to detect a weak password
that may match common dictionary words?
A - Password Spraying
B - Password Auditing
C - Password Guessing
D - Password History - ✔✔✔ Correct Answer > B - Password Auditing
Password auditing allows for existing passwords to be compared
against known weak passwords to help determine the security of a
credential.
What should an organization implement if it wants users of their site to
provide a password, memorable word, and pin?
A - Multi-factor authentication (MFA)
,B - Two-factor authentication (2FA)
C - Two-step verification
D - Single-factor authentication - ✔✔✔ Correct Answer > A - Multi-
factor authentication
MFA enhances security by requiring multiple forms of authentication,
therefore reducing the risk of unauthorized access.
A network technician is asked by their manager to update security to
block several known bad actor IP addresses.
A - Signature rules
B - Firewall rules
C - Behavior rules
D - Data loss prevention (DLP) rules - ✔✔✔ Correct Answer > B -
Firewall rules
Firewall rules can be set up to deny traffic coming from known
malicious IP addresses.
On a shopping website, there is a 500-millisecond delay when the
authorized payment button is selected for purchases. Attackers have
been running a script to alter the final payment that takes 200
, milliseconds. Which vulnerability on the website is being targeted by
the attackers?
A - Buffer Overflow
B - Integer Overflow
C - Broken Authentication
D - Race Condition - ✔✔✔ Correct Answer > D - Race Condition
A race condition occurs when multiple processes or actions are
executed simultaneously, and the outcome depends on the sequence
or timing of events.
A company wants to provide laptops to its employees so they can work
remotely. What should be implemented to ensure only work
applications can be installed on company laptops?
A - Containerization
B - Token-based access
C - Patch repository
D - Whitelisting - ✔✔✔ Correct Answer > D - Whitelisting
Whitelisting ensures that only approved applications can be installed
and executed on company laptops.
ARCHITECTURE & ENGINEERING EXAM TEST
BANK 4 | COMPLETE 2025 ACTUAL EXAM
WITH CORRECT VERIFIED ANSWERS |
GUARANTEED A+ EXAM EXCELLENCE
A security architect is designing a strategy to help continue operating in
the face of a cyber-attack. Which of the following will help to
accomplish this objective? Select 3 answers.
A - Heterogeneity
B - Clustering
C - COA development
D - Migrating to the cloud - ✔✔✔ Correct Answer > A, B & C;
Heterogeneity, Clustering, COA Development
Heterogeneity (or diversity) refers to components that are not the
same as or similar to each other. This diversity adds a layer of
complexity that can slow an adversary from infiltrating an enterprise
before detection.
Clustering allows multiple redundant processing nodes that share
data with one another to accept connections, providing redundancy.
,Part of a resilience strategy is to apply some course of action (COA)
development in response to specific events. COA helps to respond
accordingly in a prepared manner.
Migrating to the cloud will not help protect organizations if they do
not apply a defense in depth security approach. The cloud might make
it easier to do, but they still have to do it.
Which security technique should be used to detect a weak password
that may match common dictionary words?
A - Password Spraying
B - Password Auditing
C - Password Guessing
D - Password History - ✔✔✔ Correct Answer > B - Password Auditing
Password auditing allows for existing passwords to be compared
against known weak passwords to help determine the security of a
credential.
What should an organization implement if it wants users of their site to
provide a password, memorable word, and pin?
A - Multi-factor authentication (MFA)
,B - Two-factor authentication (2FA)
C - Two-step verification
D - Single-factor authentication - ✔✔✔ Correct Answer > A - Multi-
factor authentication
MFA enhances security by requiring multiple forms of authentication,
therefore reducing the risk of unauthorized access.
A network technician is asked by their manager to update security to
block several known bad actor IP addresses.
A - Signature rules
B - Firewall rules
C - Behavior rules
D - Data loss prevention (DLP) rules - ✔✔✔ Correct Answer > B -
Firewall rules
Firewall rules can be set up to deny traffic coming from known
malicious IP addresses.
On a shopping website, there is a 500-millisecond delay when the
authorized payment button is selected for purchases. Attackers have
been running a script to alter the final payment that takes 200
, milliseconds. Which vulnerability on the website is being targeted by
the attackers?
A - Buffer Overflow
B - Integer Overflow
C - Broken Authentication
D - Race Condition - ✔✔✔ Correct Answer > D - Race Condition
A race condition occurs when multiple processes or actions are
executed simultaneously, and the outcome depends on the sequence
or timing of events.
A company wants to provide laptops to its employees so they can work
remotely. What should be implemented to ensure only work
applications can be installed on company laptops?
A - Containerization
B - Token-based access
C - Patch repository
D - Whitelisting - ✔✔✔ Correct Answer > D - Whitelisting
Whitelisting ensures that only approved applications can be installed
and executed on company laptops.
