nerdexam
Exams200-201Questions#26
CiscoCisco

200-201 · Question #26

200-201 Question #26: Real Exam Question with Answer & Explanation

The correct answer is D: opening a malicious file. User interaction refers to a direct action performed by a user that triggers an event, such as opening a file or clicking a link.

Submitted by tarun92· Mar 6, 2026Security Concepts

Question

Which event is user interaction?

Options

  • Againing root access
  • Bexecuting remote code
  • Creading and writing file permission
  • Dopening a malicious file

Explanation

User interaction refers to a direct action performed by a user that triggers an event, such as opening a file or clicking a link.

Common mistakes.

  • A. Gaining root access is a privilege escalation outcome, not the initial user interaction.
  • B. Executing remote code is typically a payload delivery or exploitation stage, not the initial user interaction.
  • C. Reading and writing file permissions is a system configuration or a privilege, not a direct user interaction event that initiates a threat.

Concept tested. Cyber Kill Chain - User Interaction

Reference. https://attack.mitre.org/tactics/TA0001/ (User Execution T1204)

Topics

#user interaction#attack vectors#malware delivery

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 200-201 PracticeBrowse All 200-201 Questions