nerdexam
EC-Council

312-50V10 · Question #259

A security consultant decides to use multiple layers of anti-virus defense, such as end user desktop anti- virus and E-mail gateway. This approach can be used to mitigate which kind of attack?

The correct answer is C. Social engineering attack. Deploying anti-virus at both the email gateway and end-user desktop creates layered defenses that directly counter malware delivered through social engineering tactics like phishing.

Malware Threats

Question

A security consultant decides to use multiple layers of anti-virus defense, such as end user desktop anti- virus and E-mail gateway. This approach can be used to mitigate which kind of attack?

Options

  • AForensic attack
  • BARP spoofing attack
  • CSocial engineering attack
  • DScanning attack

How the community answered

(48 responses)
  • A
    4% (2)
  • B
    13% (6)
  • C
    77% (37)
  • D
    6% (3)

Why each option

Deploying anti-virus at both the email gateway and end-user desktop creates layered defenses that directly counter malware delivered through social engineering tactics like phishing.

AForensic attack

Forensic attack is not a standard offensive attack category; digital forensics refers to post-incident investigation and is not mitigated by anti-virus layering.

BARP spoofing attack

ARP spoofing is a network layer 2 attack that poisons ARP caches to intercept traffic, which anti-virus software cannot detect or prevent.

CSocial engineering attackCorrect

Social engineering attacks commonly use phishing emails with malicious attachments or links to trick users into executing malware. Placing anti-virus at the email gateway intercepts threats before delivery, while desktop anti-virus provides a second detection layer if anything slips through. This defense-in-depth strategy targets the malware delivery mechanism that social engineering attacks depend on.

DScanning attack

Scanning attacks are network-level reconnaissance activities such as port scans; anti-virus software does not inspect or block network scanning.

Concept tested: Defense-in-depth layered anti-virus against social engineering

Source: https://csrc.nist.gov/glossary/term/defense_in_depth

Topics

#defense in depth#antivirus layers#malware prevention#social engineering defense

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice