Exam SC-100 Topic 1 Question 102 Discussion
Actual exam question for Microsoft's SC-100 exam
Question #: 102
Topic #: 1
Question #: 102
Topic #: 1
Your company wants to optimize ransomware incident investigations.
You need to recommend a plan to investigate ransomware incidents based on the Microsoft Detection and Response Team (DART) approach.
Which three actions should you recommend performing in sequence in the plan? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

You need to recommend a plan to investigate ransomware incidents based on the Microsoft Detection and Response Team (DART) approach.
Which three actions should you recommend performing in sequence in the plan? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Suggested Answer:

1 - Assess teh current situation and identity the scope.
2 - Identity which line-of-business (LOB) apps are unavailable due to ransomware incident.
3 - Identity the compromise recovery process.
by Les at Dec 30, 2024, 12:20 AM
Contact Us
If you have any question please leave me your email address, we will reply and send email to you in 12 hours.
Our Working Time: ( GMT 0:00-15:00 ) From Monday to Saturday
Support: Contact now
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).