Certified Ethical Hacker 312-50v10 – Question294

You are monitoring the network of your organizations. You notice that:

1. There are huge outbound connections from your Internal Network to External IPs
2. On further investigation, you see that the external IPs are blacklisted
3. Some connections are accepted, and some are dropped
4. You find that it is a CnC communication
Which of the following solution will you suggest?


A.
Block the Blacklist IPs @ Firewall
B. Update the Latest Signatures on your IDS/IPS
C. Clean the Malware which are trying to Communicate with the External Blacklist IPs
D. Block the Blacklist IPs @ Firewall as well as Clean the Malware which are trying to Communicate with the External Blacklist IPs.

Correct Answer: D