nerdexam
ExamsCV0-003Questions#741
CompTIA

CV0-003 · Question #741

CV0-003 Question #741: Real Exam Question with Answer & Explanation

The correct answer is A: Chain of custody. The chain of custody refers to the process of maintaining a record of the location, custody, and control of electronic evidence from the time it is collected to the time it is presented in court. In the given scenario, the security administrator accidentally deleted the perpetrat

Security

Question

A financial industry services firm was the victim of an internal data breach, and the perpetrator was a member of the company's development team. During the investigation. one of the security administrators accidentally deleted the perpetrator's user data. Even though the data is recoverable, which of the following has been violated?

Options

  • AChain of custody
  • BEvidence acquisition
  • CContainment
  • DRoot cause analysis

Explanation

The chain of custody refers to the process of maintaining a record of the location, custody, and control of electronic evidence from the time it is collected to the time it is presented in court. In the given scenario, the security administrator accidentally deleted the perpetrator's user data during the investigation, which violates the chain of custody. By deleting the data, the administrator has altered the original evidence, which can affect the outcome of the investigation and any legal proceedings that may follow.

Topics

#chain of custody#forensics#incident response#data breach

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CV0-003 Practice
A financial industry services firm was the victim of an internal... | CV0-003 Q#741 Answer | NerdExam