CompTIA Security+ (SY0-501) — Question 413

A security auditor is performing a vulnerability scan to find out if mobile applications used in the organization are secure. The auditor discovers that one application has been accessed remotely with no legitimate account credentials. After investigating, it seems the application has allowed some users to bypass authentication of that application. Which of the following types of malware allow such a compromise to take place? (Choose two.)

Answer options

• A. RAT
• B. Ransomware
• C. Worm
• D. Trojan
• E. Backdoor

Correct answer: A, E

Explanation

RATs (Remote Access Trojans) allow attackers to gain remote control over a device, often enabling them to bypass authentication mechanisms. Backdoors are methods of bypassing normal authentication processes, allowing unauthorized access. Ransomware, worms, and trojans are not specifically designed to bypass authentication in the same manner as RATs and backdoors.