Skip to Content

CompTIA Security+ 2021 SY0-601: Guide for IT Security Teams to Analyze Threatening Voicemail Message

By: Author Alex Lim

Posted on

Categories Exam

Learn the most appropriate method for IT security teams to analyze threatening voicemail messages received by sales team members. Discover how to identify the source and take necessary actions to ensure employee safety and security.

Table of Contents

Question

Sales team members have been receiving threatening voicemail messages and have reported these incidents to the IT security team. Which of the following would be MOST appropriate for the IT security team to analyze?

A. Access control
B. Syslog
C. Session Initiation Protocol traffic logs
D. Application logs

Answer

C. Session Initiation Protocol traffic logs

Explanation

C. Session Initiation Protocol (SIP) traffic logs would be the most appropriate for the IT security team to analyze when investigating threatening voicemail messages received by sales team members.

SIP is a signaling protocol used for initiating, maintaining, and terminating real-time communication sessions, including voice and video calls over IP networks. SIP traffic logs contain detailed information about the signaling messages exchanged during the establishment and management of these sessions.

By analyzing SIP traffic logs, the IT security team can:

  1. Identify the source IP address and user agent of the threatening voicemail messages.
  2. Determine the time and date when the messages were received.
  3. Trace the path of the messages through the network.
  4. Gather evidence for further investigation and potential legal action.

Other options mentioned in the question are less relevant for this specific scenario:

  • Access control logs would not provide information about the content or source of the voicemail messages.
  • Syslog, while useful for general system monitoring, does not typically contain detailed information about SIP sessions.
  • Application logs may contain some relevant information, but they are not as specific to voice communications as SIP traffic logs.

In summary, analyzing SIP traffic logs is the most targeted and effective approach for the IT security team to investigate threatening voicemail messages received by sales team members.

CompTIA Security+ 2021 SY0-601 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the CompTIA Security+ 2021 SY0-601 exam and earn CompTIA Security+ 2021 SY0-601 certification.