CompTIA Data+ (DA0-001) — Question 360

Which of the following are the first steps a company should take after discovering a data breach? (Choose two.)

Answer options

• A. Delete data.
• B. Notify affected users.
• C. Assess the breach.
• D. Back up the system.
• E. Issue a press release
• F. Delay reporting.

Correct answer: B, C

Explanation

The correct actions are to assess the breach and notify affected users, as these steps are crucial for understanding the scope of the incident and ensuring that those impacted are aware. Deleting data, backing up the system, issuing a press release, or delaying reporting are not immediate priorities and could complicate the situation further.