When the Security Phishing Email record is created what types of observables are stored in the record? (Choose three.)
A . URLs, domains, or IP addresses appearing in the body
B . Who reported the phishing attempt
C . State of the phishing email
D . IP addresses from the header
E . Hashes and/or file names found in the EML attachment
F . Type of Ingestion Rule used to identify this email as a phishing attempt
Answer: A,D,E
Explanation:
Reference: https://docs.servicenow.com/bundle/paris-security-management/page/product/security-incident-response/concept/sighting-searches-on-phishing-attacks.html
Latest CIS-SIR Dumps Valid Version with 60 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund