Western Governors University (WGU) ITEC2112 D315 Network and Security - Foundations Pre-assessment Practice Exam

In the context of a password brute force attack on an email account, the category of the CIA triad that is compromised is confidentiality. This is because the goal of such an attack is usually to gain unauthorized access to sensitive information contained within that email account.

When a malicious user successfully performs a brute force attack, they are able to access personal and confidential information, such as employee records, payroll details, or sensitive communication. This breach of access results in a loss of confidentiality, as the information intended to be kept secret is now exposed to an unauthorized individual.

Focusing on the other categories within the CIA triad, authentication relates to verifying a user's identity, which is indeed compromised during such an attack but it is not the primary concern from a data perspective. Availability refers to ensuring users can access information when needed, and integrity relates to the trustworthiness and accuracy of that information—not directly impacted in the initial act of accessing the email account. Therefore, the most relevant impact of the brute force attack is on the confidentiality of the data within that account.