CERTIFIED-IN-CYBERSECURITY · Question #478
CERTIFIED-IN-CYBERSECURITY Question #478: Real Exam Question with Answer & Explanation
The correct answer is B: Smishing. Smishing is a social engineering attack that consists of sending fraudulent text messages to trick the recipient into divulging personal information. For example, a help desk employee might receive a bogus text message requesting immediate payment of a large and unfamiliar bill i
Question
An employee received a suspicious text message with an unfamiliar invoice number and a hyperlink for more information. Which of the following attacks is MOST likely being described? ()
Options
- AWhaling
- BSmishing
- CVishing
- DPhishing
Explanation
Smishing is a social engineering attack that consists of sending fraudulent text messages to trick the recipient into divulging personal information. For example, a help desk employee might receive a bogus text message requesting immediate payment of a large and unfamiliar bill in order to trick the recipient into clicking on a hyperlink that may lead to a fraudulent Web site designed to capture their personal and financial information. In this scenario, the suspicious text message containing an unfamiliar bill, a large amount due, and a hyperlink for more details matches the tactics used in smishing attacks. Vishing, on the other hand, is a voice or phone scam. Whaling is a phishing technique aimed at high-profile targets such as corporate executives, while generic phishing, which is designed to trick recipients into providing personal information, is more commonly associated with email or website-based scams than text messages
Topics
Community Discussion
No community discussion yet for this question.