CompTIA SecurityX (CAS-005) — Question 27

A security analyst was monitoring the networks of a group of companies. The analyst identified several periods of concentrated, coordinated activity by unknown actors. The activity repeated at regular intervals and affected all the companies. Minor hardware outages that correlated with the same times as the discovered activity escalated in severity. Which of the following threat actors was most likely involved?

Answer options

• A. An organized crime collective running a ransomware campaign
• B. A group of politically motivated hackers
• C. Disgruntled employees who were recently terminated
• D. An advanced persistent threat financed by a nation-state

Correct answer: D

Explanation

The correct answer is D because advanced persistent threats (APTs) are typically associated with nation-state actors who have the resources and motivation to conduct long-term, coordinated attacks. The regular intervals and severity of the incidents suggest a well-organized effort rather than the opportunistic nature of organized crime (A), politically motivated hackers (B), or disgruntled employees (C), who would be less likely to coordinate such extensive and systematic attacks.