CompTIA Security+ (SY0-601) — Question 801

Which of the following is most likely associated with introducing vulnerabilities on a corporate network by the deployment of unapproved software?

Answer options

• A. Hacktivists
• B. Script kiddies
• C. Competitors
• D. Shadow IT

Correct answer: D

Explanation

The correct answer is D, Shadow IT, which refers to the use of unauthorized applications and software by employees, often without IT's knowledge, thus introducing risks. Options A, B, and C do not specifically pertain to the unauthorized software issue; Hacktivists are politically motivated hackers, Script kiddies are inexperienced hackers using existing tools, and Competitors do not typically deploy software within a corporate network.