The marketing department wants to distribute pens with embedded USB drives to clients. In the past this client has been victimized by social engineering attacks
which led to a loss of sensitive data. The security administrator advises the marketing department not to distribute the USB pens due to which of the following?
A.
The risks associated with the large capacity of USB drives and their concealable nature
B.
The security costs associated with securing the USB drives over time
C.
The cost associated with distributing a large volume of the USB pens
D.
The security risks associated with combining USB drives and cell phones on a network
Explanation:
USB drive and other USB devices represent a security risk as they can be used to either bring malicious code into a secure system or to copy and remove sensitive
data out of the system.
Incorrect Answers:
B, C: Cost is not a security concern and would not be raised by the security administrator.
D: USB drives and cell phones represent separate security risks as USB drives cannot easily be inserted in cell phones.Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, pp 204
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp 247