CompTIA Updated 220-1102 Exam Questions and Answers by hawa

Cross-site scripting (XSS) (Option C) allows attackers to inject malicious scripts into web pages viewed by users. When the user visits the compromised site, the script runs in the user's browser, potentially allowing the attacker to steal data or perform unauthorized actions. XSS is a common vulnerability in web applications that allows code execution.

DoS (Option A) disrupts services but doesn't involve executing code on a user's device.

Spoofing (Option B) involves impersonating another device or user but doesn't execute code.

SQL injection (Option D) attacks a database and is unrelated to executing code on the user's computer.

CompTIA A+ Core 2 References:

2.4 - Explain common social engineering attacks, including XSS​​.

To minimize impact on users and control costs, scheduling backups after peak hours reduces network and system load during busy times, ensuring business operations aren’t disrupted. Using the built-in Windows backup utility leverages existing tools without additional software expenses. Running backups when users log in can delay user activities. Installing backup software on every workstation increases complexity and cost. Frequent hourly backups may overload systems and create excessive storage use. Core 2 operational procedures emphasize efficient scheduling and cost-effective solutions like built-in OS tools to meet backup policy objectives.

BitLocker is a full-disk encryption feature included with certain editions of Windows, designed to protect data by providing encryption for entire volumes.

Option A: FileVaultFileVault is a disk encryption program in macOS, not Windows.

Option B: BitLockerBitLocker is the correct tool for disk encryption on Windows operating systems, providing full disk encryption.

Option C: Private KeyA private key is part of public key infrastructure (PKI) used in encryption, but it is not a tool for disk encryption by itself.

Option D: PowerShellPowerShell is a task automation and configuration management framework from Microsoft, not a tool for disk encryption.