He fixed them before the attacker could.
He didn't steal data. He patched the hole. Then he logged out silently.
The final exam was live: break into a mock hospital system and fix the vulnerability without leaving a trace. Marcos spent three sleepless nights. On the last attempt, at 3:47 AM, he pivoted from a vulnerable printer (of course, a printer) to the admin dashboard.
