CISSP Question #149: Real Exam Question with Answer & Explanation

Question

Refer to the information below to answer the question. A security practitioner detects client-based attacks on the organization's network. A plan will be necessary to address these concerns. What is the BEST reason for the organization to pursue a plan to mitigate client-based attacks?

Options

• AClient privilege administration is inherently weaker than server privilege administration.
• BClient hardening and management is easier on clients than on servers.
• CClient-based attacks are more common and easier to exploit than server and network based
• DClient-based attacks have higher financial impact.

Explanation

Client-based attacks are the most prevalent attack vector in enterprise environments, making them the primary reason organizations should prioritize mitigation planning.

Common mistakes.

• A. While privilege mismanagement can affect clients, privilege administration is not inherently weaker on clients than servers; in fact, servers often run with elevated service accounts and are also subject to privilege escalation vulnerabilities, making this comparison inaccurate as the primary justification.
• B. Client hardening and management is generally considered more difficult than server hardening due to the sheer volume of endpoints, diverse software configurations, and inconsistent user behavior, making this statement factually incorrect.
• D. While client-based attacks can result in significant financial losses, financial impact alone is not consistently higher for client-based attacks versus server-based attacks such as data breaches or ransomware targeting servers, and this is not the best justification for prioritizing a mitigation plan.

Concept tested. Justification for mitigating client-based attack vectors

Reference. https://www.cisa.gov/topics/cyber-threats-and-advisories/malware-phishing

No community discussion yet for this question.