CompTIA CASP+ (CAS-003) — Question 7

An SQL database is no longer accessible online due to a recent security breach. An investigation reveals that unauthorized access to the database was possible due to an SQL injection vulnerability. To prevent this type of breach in the future, which of the following security controls should be put in place before bringing the database back online? (Choose two.)

Answer options

• A. Secure storage policies
• B. Browser security updates
• C. Input validation
• D. Web application firewall
• E. Secure coding standards
• F. Database activity monitoring

Correct answer: C, F

Explanation

The correct answers are C (Input validation) and F (Database activity monitoring) because input validation helps prevent SQL injection attacks by ensuring that only properly formatted data is accepted. Database activity monitoring allows for the detection of any unauthorized access attempts, enhancing security. Options A, B, D, and E, while important, do not directly address the specific vulnerability exploited in this scenario.