CompTIA
PT0-001 · Question #209
PT0-001 Question #209: Real Exam Question with Answer & Explanation
The correct answer is B: Steal credit cards from the database and sell them in the deep web. Script kiddies are low-skill threat actors who rely on pre-built automated tools, and stealing credit card data using widely available exploit kits best represents that profile.
Engagement management
Question
Which of the following actions BEST matches a script kiddie's threat actor?
Options
- AExfiltrate network diagrams to perform lateral movement
- BSteal credit cards from the database and sell them in the deep web
- CInstall a rootkit to maintain access to the corporate network
- DDeface the website of a company in search of retribution
Explanation
Script kiddies are low-skill threat actors who rely on pre-built automated tools, and stealing credit card data using widely available exploit kits best represents that profile.
Common mistakes.
- A. Exfiltrating network diagrams to enable lateral movement requires advanced reconnaissance, network mapping skills, and strategic planning - characteristic of APT or nation-state actors.
- C. Installing a rootkit to maintain persistent access requires deep knowledge of kernel-level programming and OS internals, far beyond the capability level of a script kiddie.
- D. Website defacement driven by retribution is more characteristic of a hacktivist threat actor motivated by ideology or grievance, not the opportunistic, tool-dependent behavior of a script kiddie.
Concept tested. Script kiddie threat actor profile and motivation
Reference. https://csrc.nist.gov/glossary/term/script_kiddie
Topics
#threat actors#script kiddie#threat modeling#attacker motivation
Community Discussion
No community discussion yet for this question.