D because no hardware can be installed on the motherboard unless the perpetrator had direct access to the machine.

Direct access

Direct Access is the only possible answer here. Removable media is a KNOWN piece of hardware and it not accessed via the motherboard.

n a supply chain attack, attackers target the hardware or software supply chain of a product to introduce malicious components or compromise legitimate ones. This type of attack often occurs during the manufacturing, distribution, or assembly process, allowing attackers to infiltrate the supply chain and tamper with products before they reach end-users.

(A) is the answer, question is asking what was used. Not how it was executed.

A is out (it's directly connected to the motherboard) B is out (it's a piece of hardware, and no phishing method can replace hardware) C is out (the problem began after a conference - if it were a supply chain issue, it would have already been noticed) D is the obvious answer, here, as you cannot attach anything to a motherboard without direct access

the question is "which attack VECTORS" were used, removable media is not the vector is the device

Answer D A- USB is well known B- Spear phishing is not a physical component C- Supply chain, if the laptop has issues after purchase, this may be supply chain attack but crucial point is after the conference, so this option is not true D- direct access is answer. Because someone implement a unknown piece of hardware to the motherboard in order to gain access the laptop.

1. The user's laptop showed signs of being compromised after returning from a conference. 2. An unknown piece of hardware was found connected to the laptop's motherboard. Supply chain attacks involve tampering with or compromising the hardware or software components of a product at some point in the supply chain. In this case, the unknown hardware connected to the laptop's motherboard was likely added during the laptop's journey through the supply chain. Therefore, the correct answer is C. Supply Chain.

Everyone choosing A didn't even read the question. Which attack vector was used to install the HARDWARE? Removable media is used to install SOFTWARE, not HARDWARE. Direct access is needed to install HARDWARE.

ChatCGT and its apologize :I apologize for any confusion in my previous responses. Based on the additional information that "an unknown piece of hardware is found connected to the laptop's motherboard," the most appropriate assumption is that this unknown hardware was physically connected to the laptop's motherboard during or after the conference. Given this specific detail, the supply chain attack, where a compromised component is introduced during manufacturing or distribution, becomes less likely. Instead, the scenario suggests a scenario closer to "direct access," where someone had physical access to the laptop, either during the conference or afterward, and connected the unknown hardware to the motherboard. Therefore, considering the presence of the unknown hardware, the attack vector "Direct access" becomes a more plausible explanation for the situation described in the scenario.

A Removable Media. Direct Access is being physically at the device to perform malicious acts rather than the use of software or hardware, the question says that hardware has been connected to the mother board, everything including USB ports are connected to the motherboard so this dose not rule out USB hardware Although they would need Direct Access to attach the hardware it is the hardware itself causing the issue.

Its A, the question states unknow hardware has been attached to the motherboard (removeable media) Direct access would be the malicious user performing an attack while physically at the device.

Well I learned something new, you can directly add removable media to the motherboard, whic is what I picked but for different reasons. One could say direct access but hardware attached to a motherboard is removable: https://www.howtogeek.com/201493/ask-htg-can-i-plug-a-usb-device-right-into-my-motherboard/

This very straight forward question with given clue that found hardware connected with motherboard. As we all know that any USB port connected with motherboard of the Computer. It’s simple of-course we maybe thinking critically due to CompTIA or easy option given.

In the given scenario, the laptop issues started after the user returned from a conference. Furthermore, an unknown piece of hardware was found connected to the laptop's motherboard. These details indicate that someone had physical access to the laptop and inserted the unknown hardware directly. A direct access attack involves an attacker physically accessing a device to compromise it. In this case, the attacker likely inserted malicious hardware or tampered with the laptop's internal components to gain unauthorized access and control over the system. Why A and C are wrong according to ChatGPT: - A. Removable media: This option involves using external devices like USB drives, CDs, or DVDs to introduce malware to a system. While it's a possible attack vector, it does not explain the presence of unknown hardware on the laptop's motherboard. - C. Supply chain: A supply chain attack involves compromising devices or components during the manufacturing or distribution process. In this case, the laptop was not new, and the issue occurred after the user returned from a conference, making a supply chain attack less likely.

Come on Guys, Have you ever opened a computer to see the motherboard, its A, as USB port is connected to the motherboard after all, plus it happed in the conference room, not in any computer hardware Lab.