Which of the following end point security controls could hav

Which of the following end point security controls could have been used to potentially prevent malware such as Stuxnet, Conficker, and Flame?

A. Implementing disk encryption

B. Hardening edge devices

C. Blocking removable media

D. Enforcing application whitelisting

Solution

C. Restricting removable media may have helped prevent infection from malware that is known to spread via thumb drive or removable media. Answer A is incorrect because encryption of media would not have helped. Answer B is incorrect as edge devices were not specifically targeted. Answer D is incorrect as enforcing application whitelisting would not have prevented advanced persistent threats from executing on local systems.