CompTIA
CAS-003 · Question #465
CAS-003 Question #465: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-003 to reveal the answer and full explanation for question #465. The question stem and answer options stay visible for context.
Question
A government contractor was the victim of a malicious attack that resulted in the theft of sensitive information. An analyst's subsequent investigation of sensitive systems led to the following discoveries: - There was no indication of the data owner's or user's accounts being compromised. - No database activity outside of previous baselines was discovered. - All workstations and servers were fully patched for all known vulnerabilities at the time of the attack. - It was likely not an insider threat, as all employees passed polygraph tests. Given this scenario, which of the following is the MOST likely attack that occurred?
Options
- AThe attacker harvested the hashed credentials of an account within the database administrators
- BAn account, which belongs to an administrator of virtualization infrastructure, was compromised
- CA shared workstation was physically accessible in a common area of the contractor's office space
- DAfter successfully using a watering hole attack to deliver an exploit to a machine, which belongs
Unlock CAS-003 to see the answer
You've previewed enough free CAS-003 questions. Unlock CAS-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.