Amazon
Avaya
Checkpoint
Cisco®
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL®
Juniper
Microsoft
Okta
Palo Alto Networks
Salesforce
All Vendors
  1. Home
  2. EC-Council
  3. 212-89

EC-Council 212-89 Exam (page: 3)
EC-Council Certified Incident Handler
Updated on: 25-Dec-2025

Viewing Page 3 of 34
212-89 PDF 258 Questions

Identify the malicious program that is masked as a genuine harmless program and gives the attacker unrestricted access to the user’s information and system. These programs may unleash dangerous programs that may erase the unsuspecting user’s disk and send the victim’s credit card numbers and passwords to a stranger.

  1. Cookie tracker
  2. Worm
  3. Trojan
  4. Virus

Answer(s): C



Quantitative risk is the numerical determination of the probability of an adverse event and the extent of the losses due to the event. Quantitative risk is calculated as:

  1. (Probability of Loss) X (Loss)
  2. (Loss) / (Probability of Loss)
  3. (Probability of Loss) / (Loss)
  4. Significant Risks X Probability of Loss X Loss

Answer(s): A



An incident recovery plan is a statement of actions that should be taken before, during or after an incident. Identify which of the following is NOT an objective of the incident recovery plan?

  1. Creating new business processes to maintain profitability after incident
  2. Providing a standard for testing the recovery plan
  3. Avoiding the legal liabilities arising due to incident
  4. Providing assurance that systems are reliable

Answer(s): A



Risk is defined as the probability of the occurrence of an incident. Risk formulation generally begins with the likeliness of an event’s occurrence, the harm it may cause and is usually denoted as Risk = ∑(events)X (Probability of occurrence)X?

  1. Magnitude
  2. Probability
  3. Consequences
  4. Significance

Answer(s): A



An audit trail policy collects all audit trails such as series of records of computer events, about an operating system, application or user activities. Which of the following statements is NOT true for an audit trail policy?

  1. It helps calculating intangible losses to the organization due to incident
  2. It helps tracking individual actions and allows users to be personally accountable for their actions
  3. It helps in compliance to various regulatory laws, rules, and guidelines
  4. It helps in reconstructing the events after a problem has occurred

Answer(s): A



Viewing Page 3 of 34



Share your comments for EC-Council 212-89 exam with other users:

Priscila 7/22/2022 9:59:00 AM

i find the xengine test engine simulator to be more fun than reading from pdf.
GERMANY