CompTIA Security+ (SY0-701) — Question 205

Which of the following threat vectors is most commonly utilized by insider threat actors attempting data exfiltration?

Answer options

• A. Unidentified removable devices
• B. Default network device credentials
• C. Spear phishing emails
• D. Impersonation of business units through typosquatting

Correct answer: A

Explanation

Unidentified removable devices are often used by insider threat actors to transfer sensitive data without detection, making them a common vector for data exfiltration. While default credentials, spear phishing, and typosquatting are legitimate threats, they are more associated with external attacks rather than insider actions focused on direct data removal.