ExpertHard1 markMultiple Choice
CPA · Question 63 · Area I: Information Systems
A company uses 'Ransomware' protection. Which backup strategy is most effective against ransomware that encrypts connected drives?
A company uses 'Ransomware' protection. Which backup strategy is most effective against ransomware that encrypts connected drives?
Answer options:
A.
Mirroring to a secondary drive on the same server.
B.
Immutable or Air-gapped backups
C.
RAID 5
D.
Cloud sync (e.g., Dropbox)
How to approach this question
Ransomware attacks everything it can reach. You need a backup it CAN'T reach (Air-gapped) or CAN'T change (Immutable).
Full Answer
B.Immutable or Air-gapped backups✓ Correct
Immutable or Air-gapped backups
Immutable backups (WORM - Write Once Read Many) or air-gapped backups (offline) prevent ransomware from encrypting or deleting the backup data, ensuring recovery is possible.
Common mistakes
Thinking RAID or standard cloud sync protects against ransomware.
Practice the full CPA ISC Practice Exam 4
82 questions · hints · full answers · grading
More questions from this exam
Q01A CPA is advising a client who is migrating their legacy on-premise ERP system to a cloud environ...HardQ02An auditor is reviewing the Service Level Agreement (SLA) for a client using a public cloud provi...HardQ03A company uses an Infrastructure as a Service (IaaS) model. During an IT audit, the auditor disco...HardQ04An organization is implementing the COSO Enterprise Risk Management (ERM) framework to govern its...HardQ05During a walkthrough of an order-to-cash process, the auditor observes that the sales manager can...Hard