-
Hi Valentin,
Thank you for reaching out and for taking the time to flag this. We really appreciate your attention to detail!
You are absolutely right, the answers highlighted in the screenshot do not match the correct ones in the solution text. We have already fixed this, and the changes will be reflected on the portal shortly.
To confirm, the three correct answers for this question are:
– Hide the alert from the list
– Create a suppression rule for a specific device group
– Set up a new alert
Regarding your question about the suppression rule, the key is the scope. When you create a suppression rule for a specific device group, it only applies to the finance department devices, leaving the rest of the organization’s security coverage untouched. Creating it for any asset would be too broad and could silence legitimate alerts on other machines, which is exactly what the question warns against. So scoping it to a device group is what keeps the security posture intact.
We hope that clears things up! Let us know if you have any other questions
Best regards,
Irene @ Tutorials Dojo
