CompTIA PenTest+ (PT0-002) — Question 395

A company is concerned that its cloud service provider is not adequately protecting the VMs housing its software development. The VMs are housed in a datacenter, with other companies sharing physical resources. Which of the following attack types is MOST concerning to the company?

Answer options

• A. Data flooding
• B. Session riding
• C. Cybersquatting
• D. Side channel

Correct answer: D

Explanation

The correct answer is D, Side channel, as it refers to attacks that exploit shared resources in a multi-tenant environment, potentially exposing sensitive data from VMs. The other options, such as Data flooding, Session riding, and Cybersquatting, do not specifically relate to the risks associated with shared physical resources in a cloud service context.