An incident response team is assessing attack vectors of malware that is encrypting data with ransomware. There are no indications of a network-based intrusion.
Which of the following is the most likely root cause of the incident?
AUSB drop attackis acommon method for delivering ransomware, where an attacker leaves infected USB drives in strategic locations,tricking employees into plugging them into corporate devices.
Option B (LFI - Local File Inclusion)exploitsweb applications, but the scenario lacksnetwork intrusion indicators.
Option C (Cross-site request forgery - CSRF)is used forexploiting authenticated web sessions, not ransomware delivery.
Option D (SQL injection)is used fordatabase exploitation, not file encryption malware.
Thus,A (USB drop) is the correct answer, asphysical malware introduction is a known ransomware attack vector.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit