Credential Exposure — CompTIA CySA+ (CS0-003) Practice Questions
Credential exposure occurs when valid usernames, passwords, API keys, or tokens become accessible to unauthorized parties through misconfigurations, breaches, code repositories, or third-party leaks. The CySA+ exam tests how analysts detect credential exposure by monitoring dark web feeds, reviewing public code repositories, and correlating authentication anomalies. Exposed credentials frequently serve as the initial access vector for larger intrusions, making early detection critical to limiting damage. Analysts must understand how to respond to confirmed exposure, including forced rotation, session invalidation, and investigation of any access that occurred using the compromised credentials.
Free questions on credential exposure
A company discovers that developers have been committing API keys and database credentials to a public GitHub repository. What should the analyst recommend as an IMMEDIATE mitigation?
Free question · medium · full answer + explanation
More credential exposure questions in the full bank
- A vulnerability scan identifies that administrative credentials for a critical system are stored in a configuration file with world-readable permissions. What severity rating is appropriate? Unlock answer & explanation →