Question 26
UnclassifiedWhich of the following is an example of integrity technical impact?
Correct answer: D
Explanation
Integrity technical impact involves unauthorized alteration or corruption of data or systems. Clicking on phish bait can trigger ransomware, which encrypts or changes files and disrupts their trustworthiness, exposing the company to an integrity loss. This fits the definition of an attack that compromises data integrity through malicious modification.
Why each option is right or wrong
A. The cloud provider reports a breach of customer personal data from an unsecured server.
B. A hacker using a stolen administrator identity alerts the discount percentage in the product database.
C. A DDoS attack renders the customer’s cloud inaccessible for 24 hours.
D. An administrator inadvertently clicked on Phish bait exposing his company to a ransomware attack.
Under the CIA triad, integrity is affected when data or systems are altered, corrupted, or rendered unreliable; ransomware commonly encrypts files and changes their state without authorization, which is a classic integrity impact. In this fact pattern, the administrator’s click on phishing bait is the initiating event that exposes the company to that unauthorized modification risk, so the resulting technical impact is integrity-related rather than confidentiality-only or availability-only.