Exam FC0-U61 topic 1 question 140 discussion

B. Password reuse Avoiding password reuse mitigates the risk of a security breach affecting multiple accounts. If a user's credentials from the breached payment website are reused on other sites, attackers could gain access to those accounts as well. Using unique passwords for each site ensures that a breach on one platform does not compromise security elsewhere.

It’s password reuse. If a user reuses the same password across multiple websites, a breach on one site (such as a payment website) can compromise accounts on other sites. The best practice to mitigate this risk is to avoid password reuse and use a unique password for each account.

Password history is a password policy feature that helps mitigate the risk of password breaches on one site affecting account security on other sites. It enforces the rule that a user cannot reuse their most recent passwords, ensuring that if one site's passwords are compromised, the attacker cannot immediately use the same password on other sites where the user has an account.

Password expiration is the way to MITIGATE the risk Password reuse is the PRACTICE that the user has followed and that's why is worried about the breach, because password reuse is a risky practice

Password reuse is not a password best practice. Password expiration is a password best practice to envoide password reuse.

It is saying that "user is concerned that the breach will affect account security on other sites" That means he reuses the password on different website. Deffinition for password expiration is : "History/expiration—change the password periodically. Many systems can automatically enforce password expiration, meaning users have to choose a new password. Such a system may also keep a history of previously used passwords and prevent the user from choosing the same one again" So the correct should be password reuse.

Password expiration: means changing the password and never using it again as if it died.