CertNexus Certified Cyber Secure Coder (CSC) — Question 70

An administrator investigating intermittent network communication problems has identified an excessive amount of traffic from an external-facing host to an unknown location on the Internet. Which of the following BEST describes what is occurring?

Answer options

• A. The network is experiencing a denial of service (DoS) attack.
• B. A malicious user is exporting sensitive data.
• C. Rogue hardware has been installed.
• D. An administrator has misconfigured a web proxy.

Correct answer: B

Explanation

The correct answer, B, indicates that a malicious user is likely transferring sensitive data, which aligns with the observation of excessive traffic to an unknown location. Option A suggests a DoS attack, which typically involves overwhelming the network rather than data exfiltration. Option C regarding rogue hardware does not directly explain the traffic issue, and option D about a misconfigured web proxy doesn't fit the scenario as well as the data export would.