Certified Threat Intelligence Analyst (CTIA) — Question 27
Karry, a threat analyst at an XYZ organization, is performing threat intelligence analysis. During the data collection phase, he used a data collection method that involves no participants and is purely based on analysis and observation of activities and processes going on within the local boundaries of the organization.
Identify the type data collection method used by the Karry.
Answer options
- A. Active data collection
- B. Passive data collection
- C. Exploited data collection
- D. Raw data collection
Correct answer: B
Explanation
The correct answer is B, Passive data collection, as it involves observing and analyzing activities without engaging participants. The other options, such as Active data collection, require participant involvement, while Exploited and Raw data collection do not specifically pertain to the observation-based approach described in the scenario.