Documentos de Académico
Documentos de Profesional
Documentos de Cultura
Question 1 What happened when malware became more sophisticated and able to change its own file content?
Correct
One new type of malware was detected per year, resulting in the growth of the malware family.
A single type of malware became an entire malware family, consisting of perhaps thousands of different files, but each file
performing the same bad behaviors.
Less sophisticated malware was still able to evade classic signature-based scanning.
A single type of malware did not multiply and no bad behavior was detected.
Security products and threat intelligence services that can act together in real time stand the best chance of stopping these
attacks.
Sharing intelligence among security vendors is the best way to fight threats.
Question 3 In the early days of threat intelligence service, in which three timeframes were vendor updates released? (Choose three.)
Partially correct
Every week
Quarterly
Twice a year
Once a year
https://training.fortinet.com/mod/quiz/review.php?attempt=2961969&cmid=53692 1/2
15/4/2020 Threat Intelligence Services
After some time, if nothing malicious is detected in the quarantined files, the sandbox declares them as safe and releases them
from quarantine.
Depending on the configuration, the owner of the sandbox can propagate this new knowledge across their network security
environment.
Sandboxes can send the details to the vendor’s threat intelligence service so that the details can be shared worldwide.
Sandboxing products take a suspect file and places it in an environment where its behaviors can be closely analyzed.
Question 5 What happens when each known malware file is represented by a one-to-one signature approach?
Correct
There are more vendor organizations that are able to keep up with the increasing number of malware files.
The variations of malware are easily detected thanks to the affordability of malware kits.
The malware count increases daily, however it can be detected early by a one-to-one signature approach.
https://training.fortinet.com/mod/quiz/review.php?attempt=2961969&cmid=53692 2/2