CFE – Financial Transactions and Fraud Schemes — Question 86

Johnathan, a Certified Fraud Examiner (CFE), is tasked with overseeing cybersecurity protocols for his employer, including identifying potential indicators of intrusion, or unauthorized access, to the organization's computer network. Which of the following could potentially indicate that the organization's network has been accessed or compromised?

Answer options

• A. Network users are prompted to install unfamiliar software packages onto their computers.
• B. Users are being denied access to network files they do not typically use as part of their organizational role
• C. The network is receiving data from a country where one of the organization's suppliers is located
• D. When logging into the network, employees are reminded to change their log-in passwords before they expire.

Correct answer: B

Explanation

The correct answer is B because if users are denied access to files they normally handle, it may signal unauthorized changes or access to their accounts. Option A suggests unusual software installation but does not directly indicate network compromise. Option C is irrelevant unless there are known threats from that country, and option D is a standard security practice that does not imply a breach.