CompTIA Security+ (SY0-601) — Question 120

A penetration tester is brought on site to conduct a full attack simulation at a hospital. The penetration tester notices a WAP that is hanging from the drop ceiling by its cabling and is reachable. Which of the following recommendations would the penetration tester MOST likely make given this observation?

Answer options

• A. Employ a general contractor to replace the drop-ceiling tiles.
• B. Place the network cabling inside a secure conduit.
• C. Secure the access point and cabling inside the drop ceiling.
• D. Utilize only access points that have internal antennas

Correct answer: C

Explanation

The correct answer is C because securing the access point and cabling prevents unauthorized access and potential tampering. Option A is irrelevant as replacing tiles does not address the security issue. Option B, while a good practice, does not directly secure the access point itself. Option D may limit functionality without addressing the immediate security concern.