CompTIA CySA+ (CS0-002) — Question 152

An employee in the billing department accidentally sent a spreadsheet containing payment card data to a recipient outside the organization. The employee intended to send the spreadsheet to an internal staff member with a similar name and was unaware of the mistake until the recipient replied to the message. In addition to retraining the employee, which of the following would prevent this from happening in the future?

Answer options

• A. Implement outgoing filter rules to quarantine messages that contain card data.
• B. Configure the outgoing mail filter to allow attachments only to addresses on the allow list.
• C. Remove all external recipients from the employee's address book.
• D. Set the outgoing mail filter to strip spreadsheet attachments from all messages.

Correct answer: A

Explanation

Implementing outgoing filter rules to quarantine messages containing card data is effective as it directly targets the specific issue of sensitive information being sent outside the organization. The other options, while somewhat helpful, do not address the core problem of accidental sending; for instance, allowing attachments only to a whitelist may still lead to errors if the wrong internal recipient is selected.