CAS-005 · Question #350
CAS-005 Question #350: Real Exam Question with Answer & Explanation
The correct answer is D: An advanced persistent threat financed by a nation-state. The described activity - concentrated, coordinated attacks that happen at regular intervals and affect multiple companies - suggests the involvement of an advanced persistent threat (APT). APTs are often well-funded and organized, typically backed by nation-states. They focus on
Question
A security analyst was monitoring the networks of a group of companies. The analyst identified several periods of concentrated, coordinated activity by unknown actors. The activity repeated at regular intervals and affected all the companies. Minor hardware outages that correlated with the same times as the discovered activity escalated in severity. Which of the following threat actors was most likely involved?
Options
- AAn organized crime collective running a ransomware campaign
- BA group of politically motivated hackers
- CDisgruntled employees who were recently terminated
- DAn advanced persistent threat financed by a nation-state
Explanation
The described activity - concentrated, coordinated attacks that happen at regular intervals and affect multiple companies - suggests the involvement of an advanced persistent threat (APT). APTs are often well-funded and organized, typically backed by nation-states. They focus on long- term, stealthy campaigns to achieve strategic goals, which might include espionage or disruption. The fact that the attacks correlate with minor hardware outages and increasing severity indicates a well-planned and ongoing attack that escalates over time, a hallmark of nation-state- backed APTs. These attackers often have the resources, skill, and persistence to operate over extended periods without detection, making them a likely candidate for this type of activity.
Community Discussion
No community discussion yet for this question.