CompTIA PenTest+ (PT1-002) — Question 52

A company is concerned that its cloud VM is vulnerable to a cyberattack and proprietary data may be stolen. A penetration tester determines a vulnerability does exist and exploits the vulnerability by adding a fake VM instance to the IaaS component of the client's VM. Which of the following cloud attacks did the penetration tester MOST likely implement?

Answer options

• A. Direct-to-origin
• B. Cross-site scripting
• C. Malware injection
• D. Credential harvesting

Correct answer: D

Explanation

The correct answer is D, Credential harvesting, as the penetration tester's action of adding a fake VM instance could be a method to capture user credentials. The other options, while related to security, do not directly align with the method described in the scenario: A involves bypassing the origin server, B pertains to injecting scripts into web pages, and C involves introducing malicious software into a system.