220-1102 · Question #632
220-1102 Question #632: Real Exam Question with Answer & Explanation
The correct answer is D: Impersonation. The scenario describes a malicious actor sending an email that mimics a trusted insider but has a subtle email address error, indicating an attempt to deceive the recipient into believing they are communicating with the legitimate person. This is a classic example of impersonatio
Question
A user receives an email from what appears to be a trusted, known insider who is requesting confidential banking information. After the user further inspects the email, the user notices that one character in the email address is incorrect. Which of the following is being attempted?
Options
- AEvil twin
- BInsider threat
- CZero-day attack
- DImpersonation
Explanation
The scenario describes a malicious actor sending an email that mimics a trusted insider but has a subtle email address error, indicating an attempt to deceive the recipient into believing they are communicating with the legitimate person. This is a classic example of impersonation.
Common mistakes.
- A. An evil twin attack involves a rogue wireless access point masquerading as a legitimate one to intercept traffic.
- B. An insider threat involves a current or former employee, contractor, or business partner with authorized access who intentionally or unintentionally misuses that access.
- C. A zero-day attack exploits a previously unknown vulnerability in software or hardware for which no patch or fix exists.
Concept tested. Impersonation in social engineering
Reference. https://learn.microsoft.com/en-us/purview/email-protection-spoofing
Topics
Community Discussion
No community discussion yet for this question.