Exam2pass
0 items Sign In or Register
  • Home
  • IT Exams
  • Guarantee
  • FAQs
  • Reviews
  • Contact Us
  • Demo
Exam2pass > EC-COUNCIL > EC-COUNCIL Certifications > 212-89 > 212-89 Online Practice Questions and Answers

212-89 Online Practice Questions and Answers

Questions 4

Which of the following terms may be defined as "a measure of possible inability to achieve a goal, objective, or target within a defined security, cost plan and technical limitations that adversely affects the organization's operation and revenues?

A. Risk

B. Vulnerability

C. Threat

D. Incident Response

Buy Now

Correct Answer: A

Questions 5

An incident is analyzed for its nature, intensity and its effects on the network and systems. Which stage of the incident response and handling process involves auditing the system and network log files?

A. Incident recording

B. Reporting

C. Containment

D. Identification

Buy Now

Correct Answer: D

Questions 6

Which among the following CERTs is an Internet provider to higher education institutions and various other research institutions in the Netherlands and deals with all cases related to computer security incidents in which a customer is involved either as a victim or as a suspect?

A. NET-CERT

B. DFN-CERT

C. Funet CERT

D. SURFnet-CERT

Buy Now

Correct Answer: D

Questions 7

A risk mitigation strategy determines the circumstances under which an action has to be taken to minimize and overcome risks. Identify the risk mitigation strategy that focuses on minimizing the probability of risk and losses by searching for vulnerabilities in the system and appropriate controls:

A. Risk Assumption

B. Research and acknowledgment

C. Risk limitation

D. Risk absorption

Buy Now

Correct Answer: B

Questions 8

The IDS and IPS system logs indicating an unusual deviation from typical network traffic flows; this is called:

A. A Precursor

B. An Indication

C. A Proactive

D. A Reactive

Buy Now

Correct Answer: B

Questions 9

Incident prioritization must be based on:

A. Potential impact

B. Current damage

C. Criticality of affected systems

D. All the above

Buy Now

Correct Answer: D

Questions 10

Which of the following service(s) is provided by the CSIRT:

A. Vulnerability handling

B. Technology watch

C. Development of security tools

D. All the above

Buy Now

Correct Answer: D

Questions 11

___________________ record(s) user's typing.

A. Spyware

B. adware

C. Virus

D. Malware

Buy Now

Correct Answer: A

Questions 12

What command does a Digital Forensic Examiner use to display the list of all IP addresses and their associated MAC addresses on a victim computer to identify the machines that were communicating with it:

A. "arp" command

B. "netstat 璦n" command

C. "dd" command

D. "ifconfig" command

Buy Now

Correct Answer: A

Questions 13

The most common type(s) of intellectual property is(are):

A. Copyrights and Trademarks

B. Patents

C. Industrial design rights and Trade secrets

D. All the above

Buy Now

Correct Answer: D

Exam Code: 212-89
Exam Name: EC Council Certified Incident Handler (ECIH v3)
Last Update: Jul 08, 2026
Questions: 232

PDF (Q&A)

$45.99
ADD TO CART

VCE

$49.99
ADD TO CART

PDF + VCE

$59.99
ADD TO CART

Exam2Pass----The Most Reliable Exam Preparation Assistance

There are tens of thousands of certification exam dumps provided on the internet. And how to choose the most reliable one among them is the first problem one certification candidate should face. Exam2Pass provide a shot cut to pass the exam and get the certification. If you need help on any questions or any Exam2Pass exam PDF and VCE simulators, customer support team is ready to help at any time when required.

Home | Guarantee & Policy |  Privacy & Policy |  Terms & Conditions |  How to buy |  FAQs |  About Us |  Contact Us |  Demo |  Reviews

2026 Copyright @ exam2pass.com All trademarks are the property of their respective vendors. We are not associated with any of them.