Confidential corporate data was recently stolen by an attacker who exploited data transport protections.
Which of the following vulnerabilities is the MOST likely cause of this data breach?
Click on the arrows to vote for the correct answer
A. B. C. D.C.
Based on the information provided, the most likely cause of the data breach is a weakness in the data transport protections. Among the given options, the vulnerability that is most closely related to data transport protection is the weak SSL cipher strength.
Secure Sockets Layer (SSL) is a protocol used to establish secure connections over the internet. It is commonly used for protecting sensitive data during transport, such as login credentials, credit card information, and other confidential corporate data. The strength of the SSL cipher used in the connection can determine how secure the connection is against eavesdropping and other attacks.
If the SSL cipher strength is weak, it can be exploited by attackers to intercept and decrypt the data being transmitted, which can result in the theft of confidential corporate data. In such cases, attackers can use tools such as packet sniffers to intercept the data in transit and decrypt it using brute-force or other attack techniques.
The other options are less likely to be the cause of the data breach. Resource exhaustion on VPN concentrators can cause denial-of-service attacks, but it is unlikely to result in data theft. Improper input handling on FTP sites can lead to various vulnerabilities, such as injection attacks, but it may not directly relate to data transport protections. A race condition on packet inspection firewall can cause network interruptions, but it is also unlikely to directly cause data theft.
Therefore, based on the given options, the weak SSL cipher strength is the most likely cause of the data breach.