[Solved] A company uses STRIDE to analyze threats and DREAD to score... If a threat scores high on Damage and Exploitability but low on Reproducibility and Discoverability, what should the company prioritize? | Cybersecurity

Cybersecurity - Security Architecture and Design

A company uses STRIDE to analyze threats and DREAD to score them. If a threat scores high on Damage and Exploitability but low on Reproducibility and Discoverability, what should the company prioritize?

AFocus on fixing the vulnerability quickly due to high impact

BIgnore the threat because it is hard to reproduce

CDelay action since discoverability is low

DOnly monitor the threat without mitigation

Step-by-Step Solution

Solution:

Step 1: Analyze high Damage and Exploitability
High damage means serious harm; high exploitability means attackers can easily exploit it.
Step 2: Consider low Reproducibility and Discoverability
Low reproducibility and discoverability reduce risk but do not eliminate it.
Step 3: Decide priority
Because impact and ease of attack are high, the company should prioritize fixing the vulnerability quickly.
Final Answer:
Focus on fixing the vulnerability quickly due to high impact -> Option A
Quick Check:
High damage + exploitability = urgent fix [OK]

Quick Trick: High damage + exploitability = fix fast [OK]

Common Mistakes:

MISTAKES

Ignoring threats with low reproducibility
Delaying fixes due to discoverability
Only monitoring without action

Master "Security Architecture and Design" in Cybersecurity

9 interactive learning modes - each teaches the same concept differently

Learn Why Deep Visual Try Challenge Project Recall Time

More Cybersecurity Quizzes

If a threat scores high on Damage and Exploitability but low on Reproducibility and Discoverability, what should the company prioritize?

Step 1: Analyze high Damage and Exploitability

Step 2: Consider low Reproducibility and Discoverability

Step 3: Decide priority

Final Answer:

Quick Check:

Want More Practice?