CompTIA CySA+ (CS0-001) — Question 41

A cybersecurity analyst traced the source of an attack to compromised user credentials. Log analysis revealed that the attacker successfully authenticated from an unauthorized foreign country. Management asked the security analyst to research and implement a solution to help mitigate attacks based on compromised passwords. Which of the following should the analyst implement?

Answer options

• A. Self-service password reset
• B. Single sign-on
• C. Context-based authentication
• D. Password complexity

Correct answer: C

Explanation

Context-based authentication is the correct choice as it evaluates the context of a user's access attempt, such as location and device, helping to detect and mitigate unauthorized access. The other options, like self-service password reset and single sign-on, do not address the specific risk of compromised credentials effectively, while password complexity alone does not prevent unauthorized access from valid credentials.