nerdexam
Exams220-802Questions#794
CompTIA

220-802 · Question #794

220-802 Question #794: Real Exam Question with Answer & Explanation

The correct answer is C: Phishing. Phishing is a social engineering attack where fraudulent messages impersonate legitimate entities to trick users into revealing credentials or clicking malicious links.

Question

A user receives an unsolicited email stating that they need to follow a link to change their username and password because their bank account has been compromised. Of which of the following is this an example?

Options

  • ASPAM
  • BSpyware
  • CPhishing
  • DMalware

Explanation

Phishing is a social engineering attack where fraudulent messages impersonate legitimate entities to trick users into revealing credentials or clicking malicious links.

Common mistakes.

  • A. SPAM refers to unsolicited bulk email used for advertising or nuisance purposes, and while phishing emails are unsolicited, SPAM alone does not imply credential theft or impersonation.
  • B. Spyware is malicious software installed on a device that covertly collects user information - it is not an email-based social engineering technique.
  • D. Malware is a broad category of malicious software including viruses and ransomware, but it does not describe the specific social engineering tactic of deceptive email impersonation.

Concept tested. Phishing attack identification and email-based social engineering

Reference. https://www.cisa.gov/news-events/news/avoiding-social-engineering-and-phishing-attacks

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 220-802 Practice