PT0-002 · Question #619
PT0-002 Question #619: Real Exam Question with Answer & Explanation
The correct answer is D: The use of a cloud-based file-sharing service may result in the inadvertent exposure or. Among the listed risks, the use of an unmanaged cloud-based file-sharing service presents the greatest risk to sensitive data. Employees using such a service outside the organization's control - Data leakage: Sensitive company information may be exposed if proper access controls
Question
A penetration tester conducted a reconnaissance exercise to gather information about a target organization. The tester discovered the following: 1. The organization's external-facing web server has an open port 22. 3. The organization's employees frequently use a cloud-based file-sharing service not managed by the organization. 4. The company's Chief Executive Officer (CEO) has an active social media presence and frequently shares personal information. Which of the following statements represents the greatest security risk to sensitive data held by the target organization?
Options
- BThe open port 22 on the web server poses a risk of unauthorized access.
- CThe CEO's active social media presence could lead to social engineering attacks targeting the
- DThe use of a cloud-based file-sharing service may result in the inadvertent exposure or
Explanation
Among the listed risks, the use of an unmanaged cloud-based file-sharing service presents the greatest risk to sensitive data. Employees using such a service outside the organization's control - Data leakage: Sensitive company information may be exposed if proper access controls are not - Unauthorized access: If the cloud service lacks strong authentication or encryption, external parties could gain access to confidential documents. - Compliance violations: Depending on the industry, storing sensitive data on unauthorized platforms can lead to regulatory issues.
Topics
Community Discussion
No community discussion yet for this question.