CompTIA Security+ SY0-601 – Question142

A routine audit of medical billing claims revealed that several claims were submitted without the subscriber's
knowledge. A review of the audit logs for the medical billing company's system indicated a company employee
downloaded customer records and adjusted the direct deposit information to a personal bank account. Which of
the following does this action describe?


A.
Insider threat
B. Social engineering
C. Third-party risk
D. Data breach

Correct Answer: A