CompTIA CASP+ Practice Test

Disable ads (and more) with a membership for a one time $2.99 payment

Enhance your CompTIA CASP+ exam readiness with our comprehensive quizzes. Sharpen your skills with detailed flashcards and multiple choice questions, each with hints and in-depth explanations. Prepare effectively for this challenging exam!

Practice this question and more.

What security risk remains unaddressed even after implementing a policy on authorized software and standard imaging for personal devices?

Malicious insider threats
Improper configuration of personal devices
Data leakage via FTP transfers of proprietary files
Unpatched vulnerabilities on personal hardware

The correct answer is: Data leakage via FTP transfers of proprietary files

The correct answer is related to the ongoing risk of data leakage, specifically through FTP transfers of proprietary files. Even when a policy is in place that restricts the use of unauthorized software and emphasizes standard imaging for personal devices, it does not comprehensively address the potential for sensitive or proprietary data to be transferred insecurely via FTP (File Transfer Protocol). FTP is known for its lack of encryption in its standard form, which means that even if devices are configured with approved software, a user could inadvertently (or maliciously) upload sensitive information to an unsecure destination, leading to data leakage. Policies regarding authorized software and imaging typically focus on maintaining a controlled environment by only permitting specific applications or system configurations. However, these measures do not inherently prevent users from engaging in risky behavior when transmitting data or fail to control how data can be transferred once it is on the device. Consequently, without additional safeguards, such as strict controls on data transmission methods and real-time monitoring for file transfers, organizations remain vulnerable to data leakage threats.