Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Discussions
  1. Home
  2. Discussions
  3. Cisco
  4. CyberOps Professional
  5. 300-215 Discussions
  6. 300-215 Exam Topic 2 Question 15 Discussion
 Cisco Discussions
Exam 300-215 All Questions
Exam 300-215 All Questions

View all questions & answers for the 300-215 exam

Go to Exam

Cisco CyberOps Professional 300-215 Question # 15 Topic 2 Discussion

300-215 Exam Topic 2 Question 15 Discussion:
Question #: 15
Topic #: 2

A threat intelligence report identifies an outbreak of a new ransomware strain spreading via phishing emails that contain malicious URLs. A compromised cloud service provider, XYZCloud, is managing the SMTP servers that are sending the phishing emails. A security analyst reviews the potential phishing emails and identifies that the email is coming from XYZCloud. The user has not clicked the embedded malicious URL. What is the next step that the security analyst should take to identify risk to the organization?
A.

Reset the reporting user's account and enable multifactor authentication.

B.

Create a detailed incident report and share it with top management.

C.

Find any other emails coming from the IP address ranges that are managed by XYZCloud.

D.

Delete email from user mailboxes and update the incident ticket with lessons learned.

Get Premium 300-215 Questions
Actual exam question for Cisco 300-215 exam by Eris2570 at May 1, 2026, 8:03:47 PM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit