A penetration tester who is doing a security assessment discovers that a critical vulnerability is being actively exploited by cybercriminals. Which of the following should the tester do NEXT?
A.
Reach out to the primary point of contact
B.
Try to take down the attackers
C.
Call law enforcement officials immediately
D.
Collect the proper evidence and add to the final report
A is correct. When an active exploitation is noticed during the engagement, everything thing else MUST be put on hold and contact the client immediately.
In this scenario, the penetration tester should inform the primary point of contact within the organization or the client who requested the security assessment. The primary point of contact could be the client's security team, the project manager, or a designated individual responsible for overseeing the assessment. By immediately notifying the primary point of contact, the tester enables the client to take appropriate actions to mitigate the vulnerability and respond to the active exploitation.
This section is not available anymore. Please use the main Exam Page.PT1-002 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
BinarySoldier
Highly Voted 3 years, 5 months agobieecop
Most Recent 1 year, 9 months agoronniehaang
2 years, 3 months ago