CompTIA PenTest+ PT0-002 Practice Question
During a penetration test, you discover evidence suggesting that an employee has been engaging in illegal activities using the company's network. Which of the following actions aligns best with professional conduct and legal responsibilities?
Ignore the findings as they are beyond the scope of the penetration test.
Confront the employee directly to investigate the matter further.
Turn off the affected systems to prevent any further illegal activity.
Immediately notify the primary or emergency contact designated by the client to relay your findings confidentially.