The most common type of data exfiltration that organizations currently experience is through:
D. Microsoft Windows network shares.
Attackers can use compromised user credentials or exploit vulnerabilities in Microsoft Windows systems to gain access to network shares and exfiltrate sensitive data. This type of attack is difficult to detect, as it appears as normal network traffic.
Other types of data exfiltration methods, such as encrypted SMTP, SQL database injections, and HTTPS file upload sites, are also commonly used by attackers, but Microsoft Windows network shares are currently the most common type of data exfiltration experienced by organizations.
Therefore, option D is the correct answer.
A study by N. J. Percoco, Data exfiltration: How Data Gets Out, reviewed 400 data exfiltrations and identified the following as the top methods for data exfiltration:
Native Remote Access Applications 27%
Microsoft Windows Network Shares 28%
Malware Capability: FTP 17%
Malware Capability: IRC 2%
Malware Capability: SMTP 4%
HTTP File Upload Site 1.5%
Native FTP Client 10%
SQL Injection 6%
Encrypted Backdoor <1%
upvoted 4 times
...
This section is not available anymore. Please use the main Exam Page.350-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
IETF1
10 months, 3 weeks agosull3y
1 year, 7 months agoJariaya1
2 years ago