Sign оut оf ALL Micrоsoft 365 Devices by following these 2 steps : 1. Go to your Microsfot Account pаge : https://myаccount.microsoft.com/ 2. Click Sign out from Everywhere Hаve you gotten the message that you have been SIGNED OUT from all your accounts ?
Scenаriо: ABC Finаnciаl Services runs mоst оf its business applications on a public cloud platform (AWS, Azure, or GCP).One day, the security team notices abnormal activities: A spike in failed login attempts across cloud accounts. Successful login from a foreign IP address not recognized in their geolocation database. Several new virtual machines (VMs) are launched, configured with open ports and admin privileges. Sensitive client data (financial reports) are transferred to an unknown external server. The company's Incident Response Plan (IRP) exists but has never been tested or updated recently. Additionally, security logs reveal that Multi-Factor Authentication (MFA) was not enforced for administrative users. Section A — Understanding the Attack (3 points) 11.1. True/False: (1 points)The attacker likely used compromised credentials rather than exploiting a software vulnerability to access the cloud environment. 11.2. Short Answer: (1 points)Identify two cloud misconfigurations that contributed to the success of this attack. 11.3. Multiple Choice: (1 points) Which of the following was the most critical security gap?A) Lack of regular patchingB) Absence of Multi-Factor Authentication (MFA)C) Outdated operating systems on VMsD) Cloud cost optimization failures Section B — Incident Response Actions (4 points) 11.4. Short Answer: (2 points)According to the Incident Response Life Cycle (NIST SP 800-61), what should be the first two immediate actions the security team must take after detecting the attack? 11.5.Multiple Choice: (2 points) Which containment strategy is best in this situation?A) Shut down all cloud services immediatelyB) Isolate affected instances while preserving evidenceC) Delete suspicious VMs to stop the attackD) Disable all user accounts across the cloud environment Section C—Post-Incident Recovery and Improvement (5 points) 11.6. True/False: (1 points)Preserving forensic evidence during a cloud breach is critical for post-incident investigations and possibly for legal proceedings. 11.7. Short Answer: (2 points)Name one cloud-native service/tool that could help detect similar breaches earlier in the future. 11.8. Short Answer: (2 points)List two improvements ABC Financial should make to their Incident Response Plan based on the lessons from this breach. 11.9. Critical Thinking (Written Paragraph - 5–6 sentences): (3 points)Suppose ABC Financial wants to improve its cloud security posture.Describe one proactive strategy (beyond just fixing MFA) that could reduce the risk of future cloud breaches.