312-50V13 · Question #396
Stephen, an attacker, targeted the industrial control systems of an organization. He generated a fraudulent email with a malicious attachment and sent it to employees of the target organization. An em
The correct answer is A. Spear-phishing attack. Stephen used a spear-phishing attack, sending a targeted malicious email to specific employees within the ICS organization, which resulted in malware infection and subsequent damage to industrial automation components.
Question
Options
- ASpear-phishing attack
- BSMishing attack
- CReconnaissance attack
- DHMI-based attack
How the community answered
(67 responses)- A75% (50)
- B7% (5)
- C3% (2)
- D15% (10)
Why each option
Stephen used a spear-phishing attack, sending a targeted malicious email to specific employees within the ICS organization, which resulted in malware infection and subsequent damage to industrial automation components.
A spear-phishing attack is a highly targeted phishing attempt directed at specific individuals or organizations, often leveraging information about the target to increase the likelihood of success. In this case, the attacker specifically targeted employees of an industrial control system organization with a malicious attachment, leading to a system compromise.
A SMishing attack is a type of phishing that uses SMS (text messages) to trick victims, which is not what occurred here as the attack used email.
A reconnaissance attack involves gathering information about a target before launching a primary attack, not the act of delivering malware itself.
An HMI-based attack targets Human-Machine Interface systems directly, but the initial vector here was an email opened by an employee, leading to malware that then propagated to industrial components, making spear-phishing the initial attack technique.
Concept tested: Social engineering (Spear phishing)
Source: https://www.cisa.gov/news-events/news/cisa-urges-organizations-remain-vigilant-against-spearphishing-emails
Topics
Community Discussion
No community discussion yet for this question.