312-50V13 · Question #154
Within the context of Computer Security, which of the following statements describes Social Engineering best?
The correct answer is C. Social Engineering is the act of getting needed information from a person rather than breaking. Social engineering in computer security refers to the act of manipulating individuals to divulge confidential information or perform actions that compromise security.
Question
Options
- ASocial Engineering is the act of publicly disclosing information
- BSocial Engineering is the means put in place by human resource to perform time accounting
- CSocial Engineering is the act of getting needed information from a person rather than breaking
- DSocial Engineering is a training program within sociology studies
How the community answered
(25 responses)- A8% (2)
- B4% (1)
- C88% (22)
Why each option
Social engineering in computer security refers to the act of manipulating individuals to divulge confidential information or perform actions that compromise security.
Publicly disclosing information is often an outcome of successful social engineering, but it does not describe the method or act of social engineering itself.
Social engineering has no relation to human resources performing time accounting; this choice is completely irrelevant to the concept.
Social engineering is fundamentally about exploiting human psychology and trust to persuade individuals to voluntarily give up information or access, rather than using technical means to bypass security controls. It relies on deception and manipulation of people.
While social engineering involves human interaction, it is a cyber security threat and technique, not a training program within sociology studies.
Concept tested: Social engineering definition
Source: https://learn.microsoft.com/en-us/security/engineering/social-engineering
Topics
Community Discussion
No community discussion yet for this question.