Certified Incident Handler (CIH) Practice Ecam

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the Certified Incident Handler (CIH) Exam. Enhance your knowledge with interactive quizzes and detailed insights into cyber incident handling. Boost your exam readiness with our expert-designed questions!

Start Multiple Choice Practice Test
Start Flash Cards

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

Which of the following practices will not help an incident handler while handling malware incidents?

  1. Zip malware files with strong passwords

  2. Isolate infected systems immediately

  3. Use a virtual machine for analysis

  4. Regularly update antivirus software

The correct answer is: Zip malware files with strong passwords

Zip malware files with strong passwords is a practice that, while it may seem to provide some level of security, does not actively assist an incident handler in managing malware incidents effectively. The primary focus of an incident handler is to analyze, contain, and mitigate threats. Zipping malware files with passwords does not facilitate any of these processes; rather, it complicates access to the files when they need to be examined for forensic purposes and incident analysis. Isolating infected systems immediately is crucial because it prevents the spread of malware to other systems. Using a virtual machine for analysis enables a safe environment where the malware can be executed and studied without risk to the host system. Regularly updating antivirus software is essential for ensuring that the latest threats are recognized and mitigated. Each of these practices supports the overall objective of incident response, whereas zipping files adds unnecessary complexity that can hinder effective malware management.

More Questions Like This