A security team uses machine learning to detect APTs by combining system behavior and network traffic data. Which approach best improves detection accuracy?

hard🚀 Application Q9 of 15

Cybersecurity - Advanced Threat Protection

AIntegrate anomaly detection on user behavior with signature-based network alerts

BOnly use signature-based detection on known malware hashes

CIgnore user behavior and focus on firewall logs alone

DRely solely on manual log review without automation

Step-by-Step Solution

Solution:

Step 1: Understand combined detection methods
Combining anomaly detection on user actions with signature alerts covers unknown and known threats.
Step 2: Evaluate other options
Using only signatures or ignoring user behavior reduces detection scope; manual review alone is inefficient.
Final Answer:
Integrate anomaly detection on user behavior with signature-based network alerts -> Option A
Quick Check:
Best detection = Combine anomaly + signature methods [OK]

Quick Trick: Combine behavior anomalies with signature alerts for best results [OK]

Common Mistakes:

MISTAKES

Relying only on known malware signatures
Ignoring user behavior data
Depending solely on manual log review

Master "Advanced Threat Protection" in Cybersecurity

9 interactive learning modes - each teaches the same concept differently

Learn Why Deep Visual Try Challenge Project Recall Time

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions

More Cybersecurity Quizzes

A security team uses machine learning to detect APTs by combining system behavior and network traffic data. Which approach best improves detection accuracy?

Step 1: Understand combined detection methods

Step 2: Evaluate other options

Final Answer:

Quick Check:

Want More Practice?