An organization suspects it has had a breach, and it is trying to determine the potential impact.
The organization knows the following:
– The source of the breach is linked to an IP located in a foreign country.
– The breach is isolated to the research and development servers.
– The hash values of the data before and after the breach are unchanged.
– The affected servers were regularly patched, and a recent scan showed no vulnerabilities.
Which of the following conclusions can be drawn with respect to the threat and impact? (Choose two.)
A . The confidentiality of the data is unaffected.
B . The threat is an AP
D . The source IP of the threat has been spoofed.
E . The integrity of the data is unaffected.
F . The threat is an insider.
Answer: BD