which of these may be considered the worst practice when it comes to vulnerability scans? a scanning…

which of these may be considered the worst practice when it comes to vulnerability scans? a scanning production servers b notifying operations staff ahead of time c taking no action on the results d using limited details in your scan reports
Answer
Brief Explanations:
Vulnerability scans are meant to identify security - risks. If no action is taken on the results, the purpose of the scan is defeated. Scanning production servers can be done carefully, notifying staff is a good practice, and limited details in reports may be a matter of policy or necessity in some cases. But ignoring results is a major flaw.
Answer:
C. Taking no action on the results