Exam SY0-601 topic 1 question 111 discussion

The CompTia Sec+ Study Guide book literally talks about USB data blockers when using public charging stations. Y'all overthink way too much sometimes.

The question is talking about PUBLIC USB power charging stations, the CISO cannot for sure place USB data blocker on all publich USB ports in the world ! The CISO also can't disable employees cell phones ports, as these are usually personal properties. USB OTG is obviously playing the oppostie of what's required if used. DLP is the answer, and it can be implemented as following: 1. Create a User Group based on AD - (You will need to have a Directory Connection configured) 2. Create a policy that detects the data AND includes a rule for the User Group. - This way it will ONLY work for those users 3. Test to make sure the policy works for ONLY those users. 4. Create a Response rule that BLOCK Endpoint AND only applies to USB 5. Apply this new Response Rule to the Policy (Response Rule Tab)

B is the right answer it just prevents juice jacking

A USB data blocker can prevent someone from writing any data to a USB drive. Some USB data blockers will also prevent systems from reading data from a USB or other removable device. Organizations recognize that removable media can be an attack vector, so it’s common for an organization to include security policy statements to prohibit the use of USB flash drives and other removable media. Some technical policies block the use of USB drives completely. A USB data blocker prevents users from writing any data to a USB drive. Some USB data blockers will also prevent systems from reading data from a USB or other removable device. This prevents malware from being delivered via removable media

DLP solutions monitor and control data transfers within an organization’s network and are more focused on preventing data leaks through various channels, such as email, cloud storage, or removable devices.

how does a simple question like this, have so much discussion among it? the fact that the post with Highly voted is the wrong answer amazes me.

USB data blocker

A USB data blocker, also known as a "USB condom" or "USB pass-through device," is a hardware device that prevents data transfer over USB connections while allowing the device to charge. It does this by physically blocking the data pins on the USB cable, only allowing power transfer between the device and the charging station. By using a USB data blocker, employees can safely charge their cell phones at public USB power charging stations without worrying about data exfiltration or potential malware infections through the USB port. The other options are not suitable for the scenario described: A. DLP (Data Loss Prevention) is a broader security measure used to prevent unauthorized data exfiltration or leakage, but it typically operates at the software or network level and may not directly address the USB charging station issue.

A USB data blocker, also known as a USB condom or charging blocker, is a small device that allows a device to be charged using a USB charging cable but blocks data transfer between the device and the USB port. When connected to a public USB charging station, it prevents any potential data exfiltration or unauthorized access to sensitive information from the connected device.

From a Security standpoint, a data blocker is much more secure as it physically takes away the data pins this is the "best" method as although DLP might give slight convenience if you forgot your cable, there are still ways around it

USB data blockers (also known as USB condom or USB port blocker) are small devices that can be placed between a USB charging port and a USB cable

The right answer for this question is A. The question ask for the best solution and the best solution is to deploy a DLP software on each employee cell phone. It is a way much cheaper to do than buy a piece of hardware( USB Data Blocker) for each employee. Secondly, if the employee failed or forgot to use the USB Data Blocker at Airport or coffee shops.............It becomes an ineffective solution. But the DLP software either Endpoint DLP or Network DLP works without human interference to prevent Data Loss. The correct Answer is A and it`s the BEST solution according to the question. Thank you

B. USB Data Blocker. an employee could carry a USB data blocker device with them to use at public USB power charging stations. A USB data blocker is a small device that plugs into the USB port and blocks the data transfer pins, while allowing the power pins to connect, so the device can be charged without any data being transferred. This would prevent any potential data exfiltration from the employee's device while it is being charged at a public charging station.

Answer is B. A USB data blocker, also known as a “USB condom” (really, no kidding!), is a device that allows you to plug into USB charging ports including charging kiosks, and USB ports on gadgets owned by other people. The main purpose of using one is to eliminate the risk of infecting your phone or tablet with malware, and even prevent hackers to install/execute any malicious code to access your data.

Dont over think this question, the answer is B

Espero no causar molestias por dejar opinios en español, sin duda a muchos les servira. La respuesta correcta es la B, la guía oficial habla de bloqueadores de datos USB como la mitigación contra el robo de datos cuando un dispositvo es conectado en un cargador público.

DLP is the right answer. This is looking for a solution for multiple employees (company-wide solution).