Summer Special Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: vce65

A security analyst discovers that a large number of employee credentials had been stolen and...

  1. Home
  2. CompTIA
  3. CompTIA Security+
  4. SY0-701
  5. SY0-701 Questions
  6. CompTIA Security+ Exam 2025 Practice Questions

A security analyst discovers that a large number of employee credentials had been stolen and were being sold on the dark web. The analyst investigates and discovers that some hourly employee credentials were compromised, but salaried employee credentials were not affected.

Most employees clocked in and out while they were Inside the building using one of the kiosks connected to the network. However, some clocked out and recorded their time after leaving to go home. Only those who clocked in and out while Inside the building had credentials stolen. Each of the kiosks are on different floors, and there are multiple routers, since the business segments environments for certain business functions.

Hourly employees are required to use a website called acmetimekeeping.com to clock in and out. This website is accessible from the internet. Which of the following Is the most likely reason for this compromise?

A.

A brute-force attack was used against the time-keeping website to scan for common passwords.

B.

A malicious actor compromised the time-keeping website with malicious code using an unpatched vulnerability on the site, stealing the credentials.

C.

The internal DNS servers were poisoned and were redirecting acmetimkeeping.com to malicious domain that intercepted the credentials and then passed them through to the real site

D.

ARP poisoning affected the machines in the building and caused the kiosks lo send a copy of all the submitted credentials to a machine.machine.

CompTIA SY0-701 View All Questions

CompTIA SY0-701 Summary

  • Vendor: CompTIA
  • Product: SY0-701
  • Update on: Jul 6, 2025
  • Questions: 569
Price: $52.5  $149.99
Buy Now SY0-701 PDF + Testing Engine Pack
Next
While reviewing logs, a security administrator identifies the following code:function(send_info)Which of the following best describes...
Which of the following is die most important security concern when using legacy systems to...
Previous

Payments We Accept

Your purchase with ExamsVCE is safe and fast. Your products will be available for immediate download after your payment has been received.
The ExamsVCE website is protected by 256-bit SSL from McAfee, the leader in online security.

examsvce payment method

Contact Us

Copyright © 2013-2025 examsvce.com. All Rights Reserved
mcafee secure

TESTED 18 Jul 2025