Question 1John was eagerly waiting to buy a new Apple phone online that was out of stock. An attacker took advantage of this situation and sent a phishing email to the target users, encouraging them to click on a link provided in the email to buy the product. John clicked on the malicious link embedded in the email and was redirected to the website controlled by the attacker. As a result, John entered his bank account details on the attacker’s website.Identify the social engineering context created by the attacker in the above scenario. 1 pointFamiliarity Authority Scarcity Intimidation 2.Question 2In which of the following phases of a social engineering attack do attackers try to reach out to disgruntled employees as they are easier to manipulate? 1 pointDevelop a relationship Select a target Exploit the relationship Research the target company

Which of the following is an example of a “phishing” attack?ASending someone an email that contains a malicious link that is disguised to look like an email from someone the person knowsBCreating a fake website that looks nearly identical to a real website in order to trick users into entering their login informationCSending someone a text message that contains a malicious link that is disguised to look like a notification that the person has won a contestDAll of the Above

Which social engineering attack involves tricking users into revealing sensitive information by pretending to be a trustworthy entity?1 pointA) PhishingB) BaitingC) PretextingD) Tailgating

An employee receives an email that they believe to be legitimate. They click on a compromised link within the email. What type of internal threat does this scenario describe?1 pointOperationalAccidentalAbusiveIntentional

1.Question 1John, a threat actor, called up Johana, the IT help desk member of the targeted organization, and informed her that Mr. Tibiyani was about to give a presentation to customers but he could not open his files as they were corrupted and that Mr. Tibiyani requested him to call and ask her to send the files to him as soon as possible to start the presentation.Identify the social engineering context created by the attacker in the above scenario. 1 pointSocial proof Consensus proof Scarcity Intimidation 2.Question 2In which of the following attacks does an attacker send an email or message to the target offering free gifts such as money and software, on the condition that the user forwards the email to a predetermined number of recipients? 1 pointHoax letters Instant chat messenger Pop-up windows Chain letters 3.Question 3In which of the following techniques does an attacker execute malicious programs on a victim’s computer or server, and when the victim enters any URL or domain name, it automatically redirects the victim’s traffic to the attacker-controlled website? 1 pointImpersonation Spimming Dumpster diving Pharming 4.Question 4Abin, an attacker intending to access the critical assets and computing devices of an organization, impersonated Sally, a system administrator. Abin masquerades as Sally and gathers critical information from computing devices of the target organization. Identify the type of insider threat demonstrated in the above scenario. 1 pointNegligent insider Malicious insider Compromised insider Professional insider 5.Question 5Which of the following countermeasures can assist users in reducing the chances of identity theft? 1 pointEnable two-factor authentication on all online accounts Ensure your name is present on the marketers’ hit lists Always give any personal information over the phone Use public Wi-Fi for sharing or accessing internet banking

Which of the below is an internet fraud in which a consumer is digitally persuaded to reveal personal data by cybercriminals? A: MiTM attackB: Phishing attack C: Website attackD: DoS attack