Certified Information Systems Security Professional (CISSP) Practice Exam 2026 – All-in-One Guide to Mastering Your Certification!

A 'set of known bad resources' is accurately referred to as a blacklist in cybersecurity. This term denotes a list that comprises entities, such as IP addresses, email addresses, domains, or applications, which are deemed harmful or untrustworthy based on historical data or observed behavior. By utilizing a blacklist, organizations can proactively block or deny access to these identified threats, thereby enhancing their security posture.

This proactive measure is crucial in threat prevention strategies as it allows for rapid identification and mitigation of known risks. For instance, if a particular IP address has been linked to malicious activities previously, it can be blacklisted to prevent any future connections from that source, helping to safeguard systems and data from potential attacks.

In contrast, other terms like whitelist represent approved entities, access control lists manage permissions, and an incident report documents incidents after they occur, which do not align with the definition of a 'set of known bad resources.'