CompTIA PenTest+ (PT0-002) — Question 182

A penetration tester initiated the transfer of a large data set to verify a proof-of-concept attack as permitted by the ROE. The tester noticed the client's data included PII, which is out of scope, and immediately stopped the transfer. Which of the following MOST likely explains the penetration tester's decision?

Answer options

• A. The tester had the situational awareness to stop the transfer.
• B. The tester found evidence of prior compromise within the data set.
• C. The tester completed the assigned part of the assessment workflow.
• D. The tester reached the end of the assessment time frame.

Correct answer: A

Explanation

The correct answer is A because the tester demonstrated situational awareness by recognizing that the data included PII, which was out of scope, and took immediate action to stop the transfer. Option B is incorrect as there is no indication that evidence of prior compromise was found. Option C does not apply since the tester did not complete the assessment workflow, and option D is also incorrect because the decision was based on the data's sensitivity, not a time constraint.