CompTIA Security+ (SY0-601) — Question 132

A Chief Executive Officer’s (CEO) personal information was stolen in a social-engineering attack. Which of the following sources would reveal if the CEO’s personal information is for sale?

Answer options

• A. Automated information sharing
• B. Open-source intelligence
• C. The dark web
• D. Vulnerability databases

Correct answer: C

Explanation

The dark web is known for hosting illegal activities, including the sale of stolen personal information, making it the most likely source to reveal if the CEO's data is for sale. Automated information sharing, open-source intelligence, and vulnerability databases do not typically deal with the illicit trade of personal information, thus making them less relevant to this scenario.