Dominate the CISA Domain 5 Test 2026 – Master Your Cybersecurity Future!

The correct choice is vulnerabilities because poor password practices and unencrypted transmissions highlight weaknesses in the protection of sensitive information within an information system.

Vulnerabilities are specific flaws or weaknesses in security controls that can be exploited by threats to gain unauthorized access or cause harm to data or systems. Poor password practices, such as using simple or commonly used passwords, create points of easy entry for potential attackers. Similarly, unencrypted transmissions expose data being transferred over networks to interception or unauthorized access, increasing the risk of data breaches.

Understanding these elements is crucial in cybersecurity, as identifying and addressing vulnerabilities is a fundamental step towards enhancing an organization’s security posture. By recognizing that these practices represent vulnerabilities, organizations can implement stronger password policies and encryption protocols to safeguard their information assets effectively.