A certified ethical hacker (CEH) completed a penetration test of the main headquarters of a
company almost two months ago, but has yet to get paid. The customer is suffering from financial
problems, and the CEH is worried that the company will go out of business and end up not
paying. What actions should the CEH take?
A.
Threaten to publish the penetration test results if not paid.
B.
Follow proper legal procedures against the company to request payment.
C.
Tell other customers of the financial problems with payments from this company.
D.
Exploit some of the vulnerabilities found on the company webserver to deface it.
B
If company is still not ready to pay after B option then A & D are the most appropriate options
a&d arent ethical, according to the NDA you sign