Having services running with default credentials is considered a misconfiguration because attackers often use these well-known credentials to gain unauthorized access to systems. Changing default credentials is a basic security measure that should be applied to all systems and services to prevent unauthorized access. The other options provided are not inherently misconfigurations, as regular software updates, using secure protocols, and having an up-to-date antivirus are recommended practices for securing systems.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why are default credentials considered a security risk?
Open an interactive chat with Bash
What are other common misconfigurations that can lead to vulnerabilities?
Open an interactive chat with Bash
How can organizations prevent misconfigurations in their systems?