Question 1

PowerGrid, a public utility company, recently suffered a cyber-attack where malicious software encrypted their critical operational data. The attackers demanded payment in cryptocurrency to provide the decryption key.

Which of the following controls would be the MOST effective in allowing PowerGrid to recover from this specific type of attack without paying the attackers?

Accepted Answer

Identify the attack as Ransomware. The only way to recover data without paying a ransom is to have a clean, inaccessible copy of the data.

Question 2

What mistakes do candidates make on this ACCA question?

Accepted Answer

Choosing preventive controls (like antivirus or MFA) when the question asks how to *recover* from an attack that has already happened.

How to approach this question

Full Answer

Common mistakes

Practice the full ACCA BT — Business & Technology Practice Exam 5

More questions from this exam