CompTIA Security+ (SY0-501) — Question 407

A user is unable to open a file that has a grayed-out icon with a lock. The user receives a pop-up message indicating that payment must be sent in Bitcoin to unlock the file. Later in the day, other users in the organization lose the ability to open files on the server.
Which of the following has MOST likely occurred? (Choose three.)

Answer options

• A. Crypto-malware
• B. Adware
• C. Botnet attack
• D. Virus
• E. Ransomware
• F. Backdoor
• G. DDoS attack

Correct answer: A, D, E

Explanation

The correct answers, A (Crypto-malware), D (Virus), and E (Ransomware), indicate that malicious software is involved, particularly ransomware which demands payment to unlock files. Adware, botnet attacks, backdoors, and DDoS attacks do not typically cause files to be locked with a payment demand, making them less relevant in this scenario.