Question
Which of the following OWASP Top 10 risks involves
insecure coding practices that allow attackers to gain access to sensitive data, such as usernames and passwords?Solution
Sensitive Data Exposure occurs when sensitive information, such as passwords, credit card details, or personal data, is not properly protected during storage or transmission. Weak encryption, improper key management, or lack of HTTPS for data in transit are common causes. An attacker can intercept such data using tools like packet sniffers or by exploiting vulnerabilities in the system. For example, an application storing user passwords in plain text instead of hashing them exposes users to credential theft if the database is compromised. Proper encryption, secure transmission (e.g., HTTPS), and adherence to best practices mitigate this risk. Why Other Options Are Incorrect :
- Security Misconfiguration : Refers to improper settings, like default credentials or unpatched software, not direct data exposure.
- Broken Authentication : Involves flawed authentication mechanisms, leading to unauthorized access, not sensitive data compromise.
- Insecure Deserialization : Involves execution of malicious code via tampered serialized objects, not direct data leaks.
- Insufficient Logging and Monitoring : Refers to the inability to detect and respond to security breaches, not data exposure.
Diffenbachia is a
On the basis of climatic condition, Walnut is an example of which type of fruit crop?
Respiratory quotient of carbohydrate is ____
National Fish Farmers day is observed annually on ____.
The two most important factors influencing the life span of seeds under storage are:
Which of the following is not a Rabi season crop?
The optimum temperature for the germination of wheat seed is ____.
On brinjal crop, malathion 50 EC is sprayed in the concentration of:
Cultivation of such crop which have different natural habit and zero competition is known as
The Bordeaux mixture was first used for the control of _____
