Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Isaca Exam CCAK Topic 1 Question 68 Discussion

Actual exam question for Isaca's CCAK exam
Question #: 68
Topic #: 1
[All CCAK Questions]

Application programming interfaces (APIs) are likely to be attacked continuously by bad actors because they:

Show Suggested Answer Hide Answer
Suggested Answer: B

APIs are likely to be attacked continuously by bad actors because they are generally the most exposed part of an application or system. APIs serve as the interface between different components or services, and often expose sensitive data or functionality to the outside world. APIs can be accessed by anyone with an Internet connection, and can be easily discovered by scanning or crawling techniques. Therefore, APIs are a prime target for attackers who want to exploit vulnerabilities, steal data, or disrupt services.


ISACA, Certificate of Cloud Auditing Knowledge (CCAK) Study Guide, 2021, p. 88-89.

OWASP, The Ten Most Critical API Security Risks - OWASP Foundation, 2019, p.4-5

by Lawana at Apr 06, 2025, 12:27 AM

Limited Time Offer

25%

Off

Get Premium CCAK Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Latanya
1 months ago
If the API is the 'private' part, I guess the hackers are trying to make it 'public' by attacking it. B is my pick.
upvoted 0 times
...
Theron
1 months ago
Wow, these options are a real API-pocalypse! I'm going with B, though - it's the most exposed and vulnerable part, like a sitting duck for attackers.
upvoted 0 times
...
Gianna
1 months ago
I'm going with D. APIs can act as a backdoor, allowing hackers to gain unauthorized access to the system.
upvoted 0 times
Giovanna
3 days ago
C) could be poorly designed.
upvoted 0 times
...
Graham
4 days ago
B) are generally the most exposed part.
upvoted 0 times
...
Lakeesha
17 days ago
A) are the asset with private IP addresses.
upvoted 0 times
...
Gail
17 days ago
A) are the asset with private IP addresses.
upvoted 0 times
...
...
Dong
2 months ago
C is definitely the right choice. Poorly designed APIs can have vulnerabilities that bad actors can exploit.
upvoted 0 times
Lourdes
16 hours ago
D) act as a very effective backdoor.
upvoted 0 times
...
Anthony
2 days ago
C) could be poorly designed.
upvoted 0 times
...
Kanisha
16 days ago
B) are generally the most exposed part.
upvoted 0 times
...
Viola
1 months ago
A) are the asset with private IP addresses.
upvoted 0 times
...
...
Hillary
2 months ago
I think B is the correct answer. APIs are the most exposed part of the application, making them a prime target for attackers.
upvoted 0 times
Dong
1 months ago
Yes, attackers target APIs because they are generally the most exposed and vulnerable.
upvoted 0 times
...
Ariel
2 months ago
I agree, APIs are often the most exposed part of an application.
upvoted 0 times
...
...
Fairy
2 months ago
I believe APIs are the most exposed part, making them a prime target for attackers.
upvoted 0 times
...
Jessenia
2 months ago
I agree with you, Eliz. Poorly designed APIs can create vulnerabilities for attackers to exploit.
upvoted 0 times
...
Eliz
2 months ago
I think APIs are likely to be attacked because they could be poorly designed.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77