medium
Single Answer
0During a third-party vulnerability scan and security test, Mikaela's employer recently discovered that the embedded systems that were installed to manage her company's new buildings have a severe remote access vulnerability. The manufacturer has gone out of business, and there is no patch or update for the devices. What should Mikaela recommend that her employer do about the hundreds of devices that are vulnerable?
Answer Options
A
Identify a replacement device model and replace every device.
B
Turn off all of the devices.
C
Move the devices to a secure and isolated network segment.
D
Reverse engineer the devices and build an in-house patch.
Correct Answer: C
Explanation
The most reasonable choice presented is to move the devices to a secure and isolated network segment. This will allow the devices to continue to serve their intended function while preventing them from being compromised. All of the other scenarios either create major new costs or deprive her organization of the functionality that the devices were purchased to provide.