A security administrator is investigating many recent incidents of credential theft for users accessing the company's website, despite the hosting web server requiring HTTPS for access. The server's logs show the website leverages the HTTP POST method for carrying user authentication details. Which of the following is the MOST likely reason for compromise?
A) The HTTP POST method is not protected by HTTPS.
B) The web server is running a vulnerable SSL configuration.
C) The HTTP response is susceptible to sniffing.
D) The company doesn't support DNSSEC.
Correct Answer:
Verified
Q430: An administrator is implementing a secure web
Q431: An organization has air gapped a critical
Q432: A Chief Information Security Officer (CISO) has
Q433: A security administrator is choosing an algorithm
Q434: Which of the following terms BEST describes
Q436: A company has migrated to two-factor authentication
Q437: A security technician has been assigned data
Q438: When backing up a database server to
Q439: Joe, a user, reports to the help
Q440: A company has a team of penetration
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents