CompTIA Security+ (SY0-501) — Question 718

A commercial cyber-threat intelligence organization observes IoCs across a variety of unrelated customers. Prior to releasing specific threat intelligence to other paid subscribers, the organization is MOST likely obligated by contracts to:

Answer options

• A. perform attribution to specific APTs and nation-state actors.
• B. anonymize any PII that is observed within the IoC data.
• C. add metadata to track the utilization of threat intelligence reports.
• D. assist companies with impact assessments based on the observed data.

Correct answer: B

Explanation

The correct answer is B because organizations are typically contractually obligated to protect personally identifiable information (PII) when sharing threat intelligence. Options A, C, and D, while relevant to threat intelligence practices, do not specifically address the legal and ethical responsibilities regarding PII anonymization.