exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam

Exam CAS-004 topic 1 question 368 discussion

Actual exam question from CompTIA's CAS-004
Question #: 368
Topic #: 1
[All CAS-004 Questions]

After installing an unapproved application on a personal device, a Chief Executive Officer reported an incident to a security analyst. This device is not controlled by the MDM solution, as stated in the BVOD policy. However, the device contained critical confidential information. The cyber incident response team performed the analysis on the device and found the following log:

Wed 12 Dec 2020 10:00:03 Unknown sources is now enabled on this device.

Which of the following is the MOST likely reason for the successful attack?

  • A. Lack of MDM controls
  • B. Auto-join hotspots enabled
  • C. Sideloading
  • D. Lack of application segmentation
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
ElDirec
Highly Voted 1 year, 1 month ago
Selected Answer: A
Sideloading is a consequence of the lack of MDM controls. The lack of Mobile Device Management (MDM) controls on the personal device could have allowed sideloading of applications. MDM solutions can enforce security policies on devices, including preventing the installation of applications from unknown sources. So, in this case, the lack of MDM controls could have indirectly contributed to the sideloading issue and the subsequent security incident.
upvoted 8 times
...
JackZ
Highly Voted 1 year, 4 months ago
Selected Answer: C
Sideloading
upvoted 6 times
...
df71cb4
Most Recent 1 week ago
Selected Answer: C
Even if the MDM is installed and on the control to disable sideloading may not be on and the device has to reference to compare the app against.
upvoted 1 times
...
Bright07
1 month ago
Selected Answer: C
Sideloading refers to the process of installing applications on a device from sources outside of official app stores (like Google Play Store or Apple App Store). This bypasses standard security checks, which makes it easier for malicious applications to be installed on the device. While the lack of Mobile Device Management (MDM) controls is certainly a concern (as stated in the BVOD policy), the log specifically shows the action of enabling "Unknown sources," which directly points to sideloading rather than an absence of management controls alone.
upvoted 1 times
...
Bright07
6 months ago
Ans C. Sideloading: Sideloading refers to the process of installing applications from sources other than the official app store or authorized distribution channels. Enabling "Unknown sources" allows the installation of apps from third-party sources, which can bypass security controls and potentially introduce malicious software. This is directly related to the issue described, where the unapproved application could have been sideloaded onto the device. While the lack of MDM controls could contribute to the overall security posture and management of the device, it is not the specific cause of the issue identified in the log. MDM controls are more about enforcing security policies and configurations rather than directly causing the ability to install unapproved applications.
upvoted 1 times
...
PluDou
7 months, 2 weeks ago
Selected Answer: A
lack of MDM controls.
upvoted 2 times
...
23169fd
8 months ago
Selected Answer: C
Definition: Sideloading refers to the installation of applications from unofficial sources, bypassing the app store's security controls. Implication: Enabling unknown sources allows potentially malicious applications to be installed on the device. These applications can have malware or other harmful components that can compromise the device's security and the confidentiality of the information stored on i
upvoted 2 times
...
EAlonso
8 months ago
it is B. as the source is unknow is not A, as BYOD the MDM is not installed, lack on BYOD policies.
upvoted 1 times
...
saucehozz
11 months ago
Selected Answer: A
Finding: Wed 12 Dec 2020 10:00:03 Unknown sources is now enabled on this device Question: What is the most likely REASON for the attack? Answer: The lack of MDM controls allowed unknown sources is the REASON.
upvoted 2 times
...
b49eb27
11 months, 1 week ago
Selected Answer: C
i would like to say A, however the device probably had default protections to prevent sideloading and it is clear that the CEO purposefully ignored them and is negligent. If mdm was in place then yes, it would have likely been prevented but ultimately this is on the CEO for disregarding safety
upvoted 3 times
...
HappyG
12 months ago
Selected Answer: A
Lack of MDM controls led to sideloading being allowed.
upvoted 4 times
...
Potato42
1 year, 2 months ago
Selected Answer: A
This is a tricky question - it's asking what is the most likely REASON for the successful attack. Sideloading is not the reason - it simply means manually installing an application not via an approved app store. The actualy REASON for this is that the device was not being managed by an MDM and, therefore, lacked security controls. All MDMs can enforce a payload or a feature control that prevents users from sideloading apps. I'm going for A.
upvoted 5 times
...
weaponxcel
1 year, 4 months ago
Selected Answer: C
C. Sideloading The enabling of "Unknown sources" suggests that an application was installed from outside the official app store, which can introduce significant security risks, especially if the source of the application isn't trusted. This process is known as sideloading.
upvoted 5 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago