A cybersecurity professional typed in a URL and discovered the admin panel for the e-commerce application is accessible over the open web with the default password. Which of the following is the MOST secure solution to remediate this vulnerability?
A.
Rename the URL to a more obscure name, whitelist all corporate IP blocks, and require two-factor
authentication.
B.
Change the default password, whitelist specific source IP addresses, and require two-factor authentication.
C.
Whitelist all corporate IP blocks, require an alphanumeric passphrase for the default password, and require
two-factor authentication.
D.
Change the username and default password, whitelist specific source IP addresses, and require two-factor
authentication.
Explanation: