CompTIA Security+ (SY0-601) — Question 750
Which of the following should be monitored by threat intelligence researchers who search for leaked credentials?
Answer options
- A. Common Weakness Enumeration
- B. OSINT
- C. Dark web
- D. Vulnerability databases
Correct answer: C
Explanation
The correct answer is C, as the dark web is a primary source where leaked credentials are often traded or sold. While OSINT, Common Weakness Enumeration, and vulnerability databases are important for general security research, they do not specifically focus on the monitoring of compromised credentials in the same way the dark web does.