🔥 3-day streak
CompTIA PenTest+ (PT0-003)8 / 175
Question 8 of 175
During a black-box external penetration test governed by a signed statement of work, a tester discovers what appears to be evidence of a prior, unauthorized breach in the client's web server logs — including malware and command-and-control artifacts unrelated to the current engagement. The contract contains no specific provision addressing this situation. What is the MOST appropriate immediate action for the tester to take?
Reviewed for accuracy · Report an issueNext question