CompTIA PenTest+ (PT0-001) — Question 39

Which of the following BEST explains why it is important to maintain confidentially of any identified findings when performing a penetration test?

Answer options

• A. Penetration test findings often contain company intellectual property
• B. Penetration test findings could lead to consumer dissatisfaction if made public.
• C. Penetration test findings are legal documents containing privileged information.
• D. Penetration test findings can assist an attacker in compromising a system.

Correct answer: D

Explanation

The correct answer, D, highlights that revealing penetration test findings could provide attackers with the necessary information to exploit vulnerabilities, thereby compromising a system. Options A, B, and C, while relevant, do not capture the critical risk posed to system security that the confidentiality of test findings addresses.