GCIL by GIAC Actual Free Exam Questions And Answers

Question 1

Your organization experiences a suspected ransomware attack affecting critical business systems. As the incident response lead, what should be your first step in the incident assessment process?
Response:

A. Restore affected systems from the last available backup

B. Immediately shut down all servers to stop the attack

C. Identify and classify the incident based on severity and impact

D. Report the attack to all stakeholders, including customers

Discussion 0

Correct Answer: C Vote an answer

Question 2

Which is a real-world example of a supply chain attack?
Response:

A. A phishing attack against an executive

B. SolarWinds breach

C. A Distributed Denial-of-Service (DDoS) attack on a website

D. A brute-force attack on an employee's account

Discussion 0

Correct Answer: B Vote an answer

Question 3

Which of the following indicators suggest that an email is part of a phishing attack?
(Select two.)
Response:

A. The email contains a legitimate company logo

B. A mismatched sender address and display name

C. Urgent requests for sensitive information

D. Emails from a known contact with an attachment

Discussion 0

Correct Answer: B,C Vote an answer

Question 4

Which best practices help prevent information leaks during an incident response?
(Select two.)
Response:

A. Posting updates on external forums

B. Allowing only senior management to handle all external communication

C. Encrypting incident reports

D. Restricting communication to authorized personnel

Discussion 0

Correct Answer: C,D Vote an answer

Question 5

Which benefits does an incident tracking system provide?
(Select two.)
Response:

A. Makes incident response optional

B. Allows security teams to monitor incident progress

C. Deletes old incident records after resolution

D. Helps identify recurring attack patterns

Discussion 0

Correct Answer: B,D Vote an answer

Question 6

An organization detects multiple failed login attempts on a cloud-based customer portal. Further investigation reveals that a large number of login attempts originated from an automated botnet using previously leaked credentials. What should be the first step in mitigating the attack?
Response:

A. Implement CAPTCHA or bot mitigation solutions on the login page

B. Enable multi-factor authentication (MFA) for all accounts

C. Block IP addresses associated with suspicious login attempts

D. Require all users to change their passwords immediately

Discussion 0

Correct Answer: A Vote an answer

Question 7

What are common consequences of a successful email attack?
(Select two.)
Response:

A. Increased email storage capacity

B. Email service performance improvement

C. Unauthorized access to internal systems

D. Financial fraud or data theft

Discussion 0

Correct Answer: C,D Vote an answer

GIAC Cyber Incident Leader GCIL - GCIL Exam Practice Test

Contact Us

Useful Links

Latest Updated