Which of the following practices should be followed to prevent confidential data loss from cyberattacks?

The practice of storing encrypted data and the encryption key at different locations is vital because it adds an extra layer of security. If an attacker gains access to the data storage but does not have access to the encryption key stored elsewhere, they cannot decrypt the data, thereby safeguarding the confidentiality of sensitive information.

Implementing two-factor access control strengthens security by requiring users to provide two forms of identification before granting access to systems or data. This additional layer reduces the likelihood of unauthorized access, as simply compromising a password would not be sufficient for an attacker to gain entry.

Limiting third-party access to the internal network is essential in protecting confidential data as it minimizes the attack surface. Third-party vendors or partners may introduce vulnerabilities; therefore, restricting their access ensures that sensitive data remains protected from potential breaches or unauthorized access.

Together, these practices form a comprehensive strategy for preventing confidential data loss from cyberattacks, which is why the combination of all these methods is the most effective approach.