Fortinet
NSE7_SOC_AR-7.6 · Question #43
NSE7_SOC_AR-7.6 Question #43: Real Exam Question with Answer & Explanation
Sign in or unlock NSE7_SOC_AR-7.6 to reveal the answer and full explanation for question #43. The question stem and answer options stay visible for context.
Question
Review the incident report. An attacker identified employee names, roles, and email patterns from public press releases, which were then used to craft tailored emails. The emails were directed to recipients to review an attached agenda using a link hosted off the corporate domain. Which two MITRE ATT&CK tactics best fit this report? (Choose two answers)
Options
- AReconnaissance
- BDiscovery
- CInitial Access
- DDefense Evasion
Unlock NSE7_SOC_AR-7.6 to see the answer
You've previewed enough free NSE7_SOC_AR-7.6 questions. Unlock NSE7_SOC_AR-7.6 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.