Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Discussions
  1. Home
  2. Discussions
  3. ECCouncil
  4. CHFI v10
  5. 312-49v10 Discussions
  6. 312-49v10 Exam Topic 17 Question 156 Discussion
 ECCouncil Discussions
Exam 312-49v10 All Questions
Exam 312-49v10 All Questions

View all questions & answers for the 312-49v10 exam

Go to Exam

ECCouncil CHFI v10 312-49v10 Question # 156 Topic 17 Discussion

312-49v10 Exam Topic 17 Question 156 Discussion:
Question #: 156
Topic #: 17

You are an information security analyst at a large pharmaceutical company. While performing a routine review of audit logs, you have noticed a significant amount of egress traffic to various IP addresses on destination port 22 during off-peak hours. You researched some of the IP addresses and found that many of them are in Eastern Europe. What is the most likely cause of this traffic?
A.

Malicious software on internal system is downloading research data from partner 5FTP servers in Eastern Europe

B.

Internal systems are downloading automatic Windows updates

C.

Data is being exfiltrated by an advanced persistent threat (APT)

D.

The organization's primary internal DNS server has been compromised and is performing DNS zone transfers to malicious external entities

Get Premium 312-49v10 Questions
Actual exam question for ECCouncil 312-49v10 exam by Rael9191 at May 5, 2026, 1:49:04 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit