Certified Incident Handler (CIH) Practice Ecam

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the Certified Incident Handler (CIH) Exam. Enhance your knowledge with interactive quizzes and detailed insights into cyber incident handling. Boost your exam readiness with our expert-designed questions!

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

What type of security incident involves an attacker disseminating malware on organizational systems?

Unauthorized access incidents
Inappropriate usage incidents
Data breach incidents
Malicious insider incidents

The correct answer is: Inappropriate usage incidents

The situation described pertains to the act of an attacker disseminating malware within organizational systems, which is fundamentally an issue of unauthorized access by malicious means. When malware is introduced, it typically results from an unauthorized entity exploiting vulnerabilities within the system, which aligns closely with unauthorized access incidents. This type of incident encompasses a range of activities where attackers gain access to systems for harmful purposes, including deploying malware that can compromise system integrity, steal data, or disrupt services. In contrast, inappropriate usage incidents usually involve employees misusing organizational resources but do not necessarily involve malicious intent or malware dissemination. Data breach incidents refer to unauthorized access to sensitive data, often with the intent to steal or leak that information, while malicious insider incidents focus on actions taken by individuals within the organization who have legitimate access but use it to conduct harmful activities. These distinctions highlight why the primary classification of the incident described is aligned with unauthorized access incidents involving malware.