Exam SY0-601 topic 1 question 77 discussion

D because no hardware can be installed on the motherboard unless the perpetrator had direct access to the machine.

Direct access

Even attaching removable media requires direct access. I am convinced the attack vector that was exolited is Direct Access.

Removable media. It's unlikely someone is going to take the time to tear the device apart and install something on the motherboard? What would they install? The USB goes directly to the motherboard, that's easier. Comp Tia is tricky. The question is bs, which is why it's always the answer they want

Direct Access is the only possible answer here. Removable media is a KNOWN piece of hardware and it not accessed via the motherboard.

n a supply chain attack, attackers target the hardware or software supply chain of a product to introduce malicious components or compromise legitimate ones. This type of attack often occurs during the manufacturing, distribution, or assembly process, allowing attackers to infiltrate the supply chain and tamper with products before they reach end-users.

(A) is the answer, question is asking what was used. Not how it was executed.

A is out (it's directly connected to the motherboard) B is out (it's a piece of hardware, and no phishing method can replace hardware) C is out (the problem began after a conference - if it were a supply chain issue, it would have already been noticed) D is the obvious answer, here, as you cannot attach anything to a motherboard without direct access

the question is "which attack VECTORS" were used, removable media is not the vector is the device

Answer D A- USB is well known B- Spear phishing is not a physical component C- Supply chain, if the laptop has issues after purchase, this may be supply chain attack but crucial point is after the conference, so this option is not true D- direct access is answer. Because someone implement a unknown piece of hardware to the motherboard in order to gain access the laptop.

1. The user's laptop showed signs of being compromised after returning from a conference. 2. An unknown piece of hardware was found connected to the laptop's motherboard. Supply chain attacks involve tampering with or compromising the hardware or software components of a product at some point in the supply chain. In this case, the unknown hardware connected to the laptop's motherboard was likely added during the laptop's journey through the supply chain. Therefore, the correct answer is C. Supply Chain.

Everyone choosing A didn't even read the question. Which attack vector was used to install the HARDWARE? Removable media is used to install SOFTWARE, not HARDWARE. Direct access is needed to install HARDWARE.

ChatCGT and its apologize :I apologize for any confusion in my previous responses. Based on the additional information that "an unknown piece of hardware is found connected to the laptop's motherboard," the most appropriate assumption is that this unknown hardware was physically connected to the laptop's motherboard during or after the conference. Given this specific detail, the supply chain attack, where a compromised component is introduced during manufacturing or distribution, becomes less likely. Instead, the scenario suggests a scenario closer to "direct access," where someone had physical access to the laptop, either during the conference or afterward, and connected the unknown hardware to the motherboard. Therefore, considering the presence of the unknown hardware, the attack vector "Direct access" becomes a more plausible explanation for the situation described in the scenario.

A Removable Media. Direct Access is being physically at the device to perform malicious acts rather than the use of software or hardware, the question says that hardware has been connected to the mother board, everything including USB ports are connected to the motherboard so this dose not rule out USB hardware Although they would need Direct Access to attach the hardware it is the hardware itself causing the issue.

Its A, the question states unknow hardware has been attached to the motherboard (removeable media) Direct access would be the malicious user performing an attack while physically at the device.

Well I learned something new, you can directly add removable media to the motherboard, whic is what I picked but for different reasons. One could say direct access but hardware attached to a motherboard is removable: https://www.howtogeek.com/201493/ask-htg-can-i-plug-a-usb-device-right-into-my-motherboard/

This very straight forward question with given clue that found hardware connected with motherboard. As we all know that any USB port connected with motherboard of the Computer. It’s simple of-course we maybe thinking critically due to CompTIA or easy option given.