CompTIA CySA+ (CS0-001) — Question 25

A reverse engineer was analyzing malware found on a retailer's network and found code extracting track data in memory. Which of the following threats did the engineer MOST likely uncover?

Answer options

• A. POS malware
• B. Rootkit
• C. Key logger
• D. Ransomware

Correct answer: A

Explanation

The correct answer is A, as POS malware specifically targets point-of-sale systems to capture card data. A rootkit typically hides its presence on a system, a keylogger captures keystrokes, and ransomware encrypts files for ransom, making them less relevant to the scenario described.