EC-Council
312-50V9 · Question #376
312-50V9 Question #376: Real Exam Question with Answer & Explanation
The correct answer is A: Social Engineering. Social engineering is a penetration testing technique that exploits human psychology rather than technical vulnerabilities to bypass security controls.
Question
Which of the following is a form of penetration testing that relies heavily on human interaction and often involves tricking people into breaking normal security procedures?
Options
- ASocial Engineering
- BPiggybacking
- CTailgating
- DEavesdropping
Explanation
Social engineering is a penetration testing technique that exploits human psychology rather than technical vulnerabilities to bypass security controls.
Common mistakes.
- B. Piggybacking is a specific physical security attack where an unauthorized person gains entry through a secured door with the knowledge and often the consent of an authorized person, not a broad human-manipulation technique.
- C. Tailgating is a physical intrusion method where an attacker follows an authorized person through a secured door without that person's awareness, making it a subset of physical bypass rather than a broad social manipulation technique.
- D. Eavesdropping is a passive attack that involves intercepting communications (network or verbal) without the target's knowledge, not a technique that relies on tricking people into breaking procedures.
Concept tested. Social engineering as human-based penetration testing
Reference. https://learn.microsoft.com/en-us/security/engineering/social-engineering
Community Discussion
No community discussion yet for this question.