Isaca Exam CCOA Topic 2 Question 3 Discussion

The primary risk associated with cybercriminals eavesdropping on unencrypted network traffic is data exposure because:

Interception of Sensitive Data: Unencrypted traffic can be easily captured using tools like Wireshark or tcpdump.

Loss of Confidentiality: Attackers can view clear-text data, including passwords, personal information, or financial details.

Common Attack Techniques: Includes packet sniffing and Man-in-the-Middle (MitM) attacks.

Mitigation: Encrypt data in transit using protocols like HTTPS, SSL/TLS, or VPNs.

Other options analysis:

A . Data notification: Not relevant in the context of eavesdropping.

B . Data exfiltration: Usually involves transferring data out of the network, not just observing it.

D . Data deletion: Unrelated to passive eavesdropping.

CCOA Official Review Manual, 1st Edition Reference:

Chapter 4: Network Security Operations: Highlights the risks of unencrypted traffic.

Chapter 8: Threat Detection and Monitoring: Discusses eavesdropping techniques and mitigation.