Certificate of Cloud Auditing Knowledge (CCAK) — Question 49

Which of the following is an example of financial business impact?

Answer options

• A. A hacker using a stolen administrator identity brings down the SaaS sales and marketing systems, resulting in the inability to process customer orders or manage customer relationships.
• B. While the breach was reported in a timely manner to the CEO, the CFO and CISO blamed each other in public, resulting in a loss of public confidence that led the board to replace all three.
• C. A DDoS attack renders the customer's cloud inaccessible for 24 hours resulting in millions in lost sales.
• D. The cloud provider fails to report a breach of customer personal data from an unsecured server, resulting in GDPR fines of 10 million euro.

Correct answer: C

Explanation

Option C is correct because it directly highlights a significant loss of revenue due to a DDoS attack impacting sales. The other options, while illustrating negative consequences of security incidents, focus more on reputational damage or regulatory penalties rather than direct financial loss.