Exam CS0-003 Topic 1 Question 175 Discussion

Actual exam question for CompTIA's CS0-003 exam
Question #: 175
Topic #: 1
An incident response team is assessing attack vectors of malware that is encrypting data with ransomware.
There are no indications of a network-based intrusion.
Which of the following is the most likely root cause of the incident?

Suggested Answer: A Vote an answer

AUSB drop attackis acommon method for delivering ransomware, where an attacker leaves infected USB drives in strategic locations,tricking employees into plugging them into corporate devices.
* Option B (LFI - Local File Inclusion)exploitsweb applications, but the scenario lacksnetwork intrusion indicators.
* Option C (Cross-site request forgery - CSRF)is used forexploiting authenticated web sessions, not ransomware delivery.
* Option D (SQL injection)is used fordatabase exploitation, not file encryption malware.
Thus,A (USB drop) is the correct answer, asphysical malware introduction is a known ransomware attack vector.

by Rosemary at Jun 09, 2025, 08:06 PM

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

0
0
0
10