CompTIA Security+ (SY0-601) — Question 229

A major manufacturing company updated its internal infrastructure and just recently started to allow OAuth applications to access corporate data. Data leakage is now being reported. Which of the following MOST likely caused the issue?

Answer options

• A. Privilege creep
• B. Unmodified default settings
• C. TLS protocol vulnerabilities
• D. Improper patch management

Correct answer: B

Explanation

The correct answer is B, as unmodified default settings can leave systems vulnerable to exploitation, especially when new applications are integrated. The other options, while they can lead to security issues, are less likely to be the direct cause of data leakage in this scenario where OAuth applications are involved.