ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CV0-003 All Questions

View all questions & answers for the CV0-003 exam
Go to Exam

Exam CV0-003 topic 1 question 340 discussion

Actual exam question from CompTIA's CV0-003
Question #: 340
Topic #: 1
[All CV0-003 Questions]

A security analyst is investigating incidents in which attackers are able to access sensitive data from a corporate application’s database. The attacks occur periodically and usually after the release of a new application’s version. The following log confirms the compromise:



The following actions are made after every incident occurrence:
• Validation of firewall rules
• Scripted rebuild of the database and web instances
• Application deployment from a cloud code repository

Which of the following actions will most likely prevent future compromises?

  • A. Rotating the account credentials
  • B. Migrating the database to be on premises
  • C. Forbidding the use of API calls to retrieve data
  • D. Implementing a new database service account
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Rjimbo at May 28, 2024, 4:43 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
BigM
5 months, 2 weeks ago
Selected Answer: D
Explanation: Since the attacks occur periodically after each application release, it suggests that the database credentials are exposed or compromised in the deployment process. ✔ Implementing a new database service account ensures that attackers can no longer use previously compromised credentials after a new application version is released. ✔ The new account should be configured with least privilege access and rotated securely to prevent unauthorized access. ✔ Additionally, securing the way credentials are stored (e.g., environment variables, secret management tools) will reduce the risk of leaks.
upvoted 1 times
...
Rjimbo
8 months, 2 weeks ago
Selected Answer: D
This action is the most likely to address the root cause of the periodic compromises. If the database service account used by the application is compromised or has overly broad permissions, each new deployment could inadvertently re-expose the vulnerability. By implementing a new service account with the principle of least privilege, you can ensure that the application only has the permissions it needs and reduce the risk of future compromises.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel