101 · Question #452
When a business is hacked, they often lose more than money. What are the other consequences to a business as a result of being hacked? Select two.
The correct answer is A. Helpful third party reviews of the security needs of the customer's web applications. D. Final resolution of all security vulnerabilities of the business' web applications.. Beyond financial loss, being hacked forces businesses to undergo external security assessments of their applications and to remediate discovered vulnerabilities across their environment.
Question
When a business is hacked, they often lose more than money. What are the other consequences to a business as a result of being hacked? Select two.
Options
- AHelpful third party reviews of the security needs of the customer's web applications.
- BValuable free press that occurs as companies address hacking incidents.
- CPenalties related to non-compliance with laws and regulations.
- DFinal resolution of all security vulnerabilities of the business' web applications.
- ELoss of customers when slow connections drive customers to competitor's site.
How the community answered
(37 responses)- A89% (33)
- B3% (1)
- C5% (2)
- E3% (1)
Why each option
Beyond financial loss, being hacked forces businesses to undergo external security assessments of their applications and to remediate discovered vulnerabilities across their environment.
A breach commonly compels organizations to engage third-party security firms for forensic investigation and security assessments of their web applications, making external reviews a direct operational consequence of the incident.
Press coverage from a breach is typically negative and damaging to reputation, not 'valuable free press' - this choice describes an unrealistic positive framing that does not reflect actual business consequences.
Regulatory penalties, while a real-world concern, are not identified as a primary consequence in this context because penalties require a specific regulatory framework to be in scope for that business.
A hack forces the organization to identify and remediate all discovered security vulnerabilities in their web applications as part of the incident response and recovery process, representing a significant forced operational burden.
Customer loss due to slow connections describes a performance or availability impact - such as from a DDoS attack - rather than a direct consequence of a breach affecting confidentiality or data integrity.
Concept tested: Non-financial business consequences of security breaches
Topics
Community Discussion
No community discussion yet for this question.