Free ISC2 CC Certified in Cybersecurity Actual Exam Questions - Question 15 Discussion
D for sure. APTs aren’t single events like DoS or program insertion but ongoing, targeted hacks meant to stay hidden and gather info over time.
It’s D because APTs aren’t just one attack, they’re ongoing campaigns.
It’s D because APTs are all about sustained, targeted attacks often backed by well-resourced groups. It’s not just about inserting a program or causing immediate disruption like B or C. Plus, it’s different from A since APTs don’t mainly focus on intercepting communication but rather on maintaining long-term access. The “persistent” in APT really points to ongoing presence, which none of the other options capture.
Isn’t B more about malware insertion rather than the ongoing stealth nature of APTs?
Makes sense to exclude A since APTs aren’t about intercepting traffic, so D.
C/B? APTs aren’t about crashing systems like DoS or just inserting bad code briefly.
I get why D fits, but what about ruling out B and C just based on the type of impact? Program insertion and DoS are more about immediate effects, while APTs are stealthy and long-term. Does that help narrow it down?
It’s D. The key part about APTs is that they’re long-term and targeted, unlike the other options which are more about quick or direct attacks. So it makes sense that APT stands for Advanced Persistent Threat, focusing on ongoing access rather than a one-off event.
Probably D again. The other options don’t make much sense because APTs aren’t just one-time exploits or obvious attacks. They’re about sustained, targeted efforts over weeks or months, which none of the other choices capture. So it’s definitely that long-term, advanced threat scenario described in D.
It’s D, since APTs focus on continuous access, not a single attack event.
Probably D. APT attacks are all about staying in the system over time, not just one quick strike like the other options suggest.
Option D fits best since APTs are about long-term stealth, not just one attack.
Maybe D here, but if you think about it, APTs aren’t just one attack type; they’re more like a long-term campaign. So, it’s not a quick hit like a DoS or just slipping in a program. It’s about staying hidden and keeping access over time, which matches what D says. The other options don’t capture that ongoing, strategic nature.
B. I get why most say D, but I think it’s worth remembering that APTs often start with something like program insertion to gain initial access. Without that first step, the persistent threat can’t even begin. So, B isn’t totally off the table as part of the bigger picture. The question might be tricky because an APT attack is more of a campaign rather than just one type of attack, so the initial vector could vary, including program insertion. Just saying, the actual attack method might be closer to B at the start, even if the overall thing is called an APT.
Maybe D makes the most sense because an APT isn’t just about one quick move like program insertion or DoS. It’s more about a coordinated, ongoing attack that stays under the radar for a long time. The word “advanced” also hints at something more complex than the simpler options. The others (A, B, C) seem too narrow or specific to cover the full scope of what an APT really is.
D, since it’s about a continuous, stealthy threat, not a one-time event.
D. It’s not about a single technique like program insertion or DoS; APTs are defined by their long-term, stealthy nature, which none of the other options capture.
It’s D because APT attacks involve continuous, targeted efforts to infiltrate and maintain access, unlike one-off attacks like DoS or program insertion. The persistence factor is key here.
Maybe D, since APTs are more about the sustained, targeted nature of the attack rather than just a single method like DoS or on-path. It’s definitely not just one quick strike.
A imo, it’s gotta be D since APT stands for Advanced Persistent Threat, which is all about a long-term, stealthy attack. The other options don’t capture that ongoing and targeted nature like D does.