CompTIA CySA+ (CS0-001) — Question 130

A cybersecurity analyst is investigating an incident report concerning a specific user workstation. The workstation is exhibiting high CPU and memory usage, even when first started, and network bandwidth usage is extremely high. The user reports that applications crash frequently, despite the fact that no significant changes in work habits have occurred. An antivirus scan reports no known threats. Which of the following is the MOST likely reason for this?

Answer options

• A. Advanced persistent threat
• B. Zero day
• C. Trojan
• D. Logic bomb

Correct answer: B

Explanation

The most likely reason for the described symptoms is a Zero day vulnerability, which can cause significant resource consumption and crashes without being detected by standard antivirus software. An Advanced persistent threat, Trojan, or Logic bomb may exhibit different characteristics or require more time to manifest their effects, making them less probable in this scenario.