(ISC)2(ISC)2
SSCP · Question #1078
SSCP Question #1078: Real Exam Question with Answer & Explanation
The correct answer is C: Committing computer crimes in such small doses that they almost go unnoticed. A salami attack is a type of computer crime where very small amounts of assets, often money, are stolen from a large number of transactions, making each individual theft almost imperceptible.
Submitted by yasin.bd· Apr 18, 2026Security Concepts and Practices
Question
A salami attack refers to what type of activity?
Options
- AEmbedding or hiding data inside of a legitimate communication - a picture, etc.
- BHijacking a session and stealing passwords
- CCommitting computer crimes in such small doses that they almost go unnoticed
- DSetting a program to attack a website at11:59 am on New Year's Eve
Explanation
A salami attack is a type of computer crime where very small amounts of assets, often money, are stolen from a large number of transactions, making each individual theft almost imperceptible.
Common mistakes.
- A. Embedding or hiding data within legitimate files or communications is known as steganography, which is distinct from a salami attack.
- B. Hijacking a session and stealing passwords describes a session hijacking or credential theft attack, which is not a salami attack.
- D. Setting a program to execute a malicious action at a specific future time or event is characteristic of a logic bomb, not a salami attack.
Concept tested. Salami attack definition
Topics
#Salami attack#Computer fraud#Attack types#Financial crime
Community Discussion
No community discussion yet for this question.