CompTIA PenTest+ (PT0-002) — Question 14

Which of the following is the MOST common vulnerability associated with IoT devices that are directly connected to the Internet?

Answer options

• A. Unsupported operating systems
• B. Susceptibility to DDoS attacks
• C. Inability to network
• D. The existence of default passwords

Correct answer: D

Explanation

The correct answer is D because many IoT devices come with default passwords that are often not changed, making them an easy target for attackers. While unsupported operating systems (A) and susceptibility to DDoS attacks (B) are concerns, they are not as universally prevalent as the issue of default passwords. The inability to network (C) is generally not a vulnerability but rather a functional limitation.