CISSP Practice question #33

What is a common attack against data at rest?
A: Stealing unencrypted laptops.
B: MITM.
C: Screen scrapers.
D: BCP.

CBK 2: Asset Security
Source: ThorTeaches.com practice tests

Answer


A: If we do not encrypt our laptops which uses the data from our database, it is a very good attack vector for someone wanting to steal our data.

show less

IT security trainer.
Sharing my knowledge, to help you reach your IT certification goals.
CISSP, C|EH, PMP, CCNP, CompTIA Security+, SCP, CCNA-Security, CCNA, et. Al.

You may also like

14 Comments

  1. It is one of those where it is the right answer because it is the only plausible answer. You will see those on the exam.
    Data at rest is data not actively being used or transmitted over a network.
    An unencrypted laptop would have data at rest, a screen scraper is an attack against data in use, MITM is data in transit/motion (man in the middle attack), BCP is business continuity plan and is really just a distractor.

Leave a Reply