Isaca Exam CCAK Topic 1 Question 68 Discussion

Actual exam question for Isaca's CCAK exam

Question #: 68
Topic #: 1

[All CCAK Questions]

Application programming interfaces (APIs) are likely to be attacked continuously by bad actors because they:

Aare the asset with private IP addresses.

Bare generally the most exposed part.

Ccould be poorly designed.

Dact as a very effective backdoor.

Show Suggested Answer

Suggested Answer: B

APIs are likely to be attacked continuously by bad actors because they are generally the most exposed part of an application or system. APIs serve as the interface between different components or services, and often expose sensitive data or functionality to the outside world. APIs can be accessed by anyone with an Internet connection, and can be easily discovered by scanning or crawling techniques. Therefore, APIs are a prime target for attackers who want to exploit vulnerabilities, steal data, or disrupt services.

ISACA, Certificate of Cloud Auditing Knowledge (CCAK) Study Guide, 2021, p. 88-89.

OWASP, The Ten Most Critical API Security Risks - OWASP Foundation, 2019, p.4-5

by Lawana at Apr 06, 2025, 12:27 AM

Limited Time Offer

25%

20 days ago

I think APIs are likely to be attacked because they could be poorly designed.

upvoted 0 times

...