Q. A false positive can be defined as… (Solved)
1. An alert that indicates nefarious activity on a system that, upon further inspection, turns out to represent legitimate network traffic or behavior.
2. An alert that indicates nefarious activity on a system that is not running on the network.
3. The lack of an alert for nefarious activity.
4. Both a. and b.
- d. Both a. and b.