Phase 4 of the Cyber Kill Chain occurs after the weapon is delivered to the victim host. At this point, exploitation triggers intruders code. Most often, exploitation targets an application or operating system vulnerability, but it could also more simply exploit the users themselves or leverage an operating system feature that auto-executes code.

Conduct independent research into this phase of the Cyber Kill Chain and a complete a 2-3 page narrative (double spaced) discussing how attacks are typically activated for malware that is at rest on a target's system. Then, play the role of a consultant and advise a fictional Chief Information Security Officer (CISO) on how a countermeasure for exploitation not to occur.