nerdexam
(ISC)2

CERTIFIED-IN-CYBERSECURITY · Question #4

Which of the following is NOT a social engineering technique? ()

The correct answer is C. Segregation. In cybersecurity, 'segregation', or 'segregation of duties' (SoD), is a security principle designed to prevent fraud or error by dividing tasks among multiple persons.It is an administrative control that reduces the risk of potential errors or fraud from a single person having co

Domain 1: Security Principles - Understand Common Attack Types

Question

Which of the following is NOT a social engineering technique? ()

Options

  • APretexting
  • BQuid pro quo
  • CSegregation
  • DBaiting

How the community answered

(40 responses)
  • B
    5% (2)
  • C
    93% (37)
  • D
    3% (1)

Explanation

In cybersecurity, 'segregation', or 'segregation of duties' (SoD), is a security principle designed to prevent fraud or error by dividing tasks among multiple persons.It is an administrative control that reduces the risk of potential errors or fraud from a single person having control over all aspects of a critical process. The remaining options are valid social engineering techniques. Baiting is a social engineering attack in which a scammer uses a false promise to lure a victim. Pretexting is a social engineering technique that manipulates victims into revealing information. Quid pro quo is a social engineering attack (technically a combination of baiting and pretexting) that promises users a benefit in exchange for information (that can later be used to gain control of a user's account or sensitive information).

Topics

#Social Engineering#Attack Techniques#Security Threats#Security Awareness

Community Discussion

No community discussion yet for this question.

Full CERTIFIED-IN-CYBERSECURITY Practice