CompTIA CASP+ (CAS-003) — Question 96

Ann, a security manager, is reviewing a threat feed that provides information about attacks that allow a malicious user to gain access to private contact lists. Ann receives a notification that the vulnerability can be exploited within her environment. Given this information, Ann can anticipate an increase in:

Answer options

• A. vishing attacks
• B. SQL injections attacks
• C. web application attacks
• D. brute-force attacks

Correct answer: B

Explanation

The correct answer is B, as SQL injection attacks are a common method for attackers to manipulate databases and access sensitive information, like contact lists. The other options, while they may involve different attack vectors, do not directly relate to exploiting database vulnerabilities to retrieve private data.