Exam CS0-003 Topic 1 Question 175 Discussion
Actual exam question for CompTIA's CS0-003 exam
Question #: 175
Topic #: 1
Question #: 175
Topic #: 1
An incident response team is assessing attack vectors of malware that is encrypting data with ransomware.
There are no indications of a network-based intrusion.
Which of the following is the most likely root cause of the incident?
There are no indications of a network-based intrusion.
Which of the following is the most likely root cause of the incident?
Suggested Answer: A Vote an answer
AUSB drop attackis acommon method for delivering ransomware, where an attacker leaves infected USB drives in strategic locations,tricking employees into plugging them into corporate devices.
* Option B (LFI - Local File Inclusion)exploitsweb applications, but the scenario lacksnetwork intrusion indicators.
* Option C (Cross-site request forgery - CSRF)is used forexploiting authenticated web sessions, not ransomware delivery.
* Option D (SQL injection)is used fordatabase exploitation, not file encryption malware.
Thus,A (USB drop) is the correct answer, asphysical malware introduction is a known ransomware attack vector.
* Option B (LFI - Local File Inclusion)exploitsweb applications, but the scenario lacksnetwork intrusion indicators.
* Option C (Cross-site request forgery - CSRF)is used forexploiting authenticated web sessions, not ransomware delivery.
* Option D (SQL injection)is used fordatabase exploitation, not file encryption malware.
Thus,A (USB drop) is the correct answer, asphysical malware introduction is a known ransomware attack vector.
by Rosemary at Jun 09, 2025, 08:06 PM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).