CertNexus Certified Cyber Secure Coder (CSC) — Question 56

Which asset would be the MOST desirable for a financially motivated attacker to obtain from a health insurance company?

Answer options

• A. Transaction logs
• B. Intellectual property
• C. PII/PHI
• D. Network architecture

Correct answer: C

Explanation

The correct answer, C. PII/PHI, includes personally identifiable information and protected health information, which can be sold on the black market for identity theft and fraud. While transaction logs, intellectual property, and network architecture may hold value, they do not offer the same immediate financial benefits as PII/PHI.