CompTIA Security+ (SY0-601) 200 Questions and Answers(A+ Solution guide)

Phishing - A type of social engineering attack often used to steal user data, including login credentials and credit card numbers. Smishing - The act of committing text message fraud to try to lure victims into revealing account information or installing malware. Vishing - An electronic fraud tactic in which individuals are tricked into revealing critical financial or personal information to unauthorized entities. Spam - An unsolicited bulk messages sent to multiple recipients who did not ask for them. Spam over instant messaging (SPIM) - Refers to unsolicited instant messages. Spear phishing - An email or electronic communications scam targeted towards a specific individual, organization or business. Dumpster diving - A technique used to retrieve information that could be used to carry out an attack on a computer network. Shoulder surfing - A direct observation techniques, such as looking over someone's shoulder, to get information. Pharming - A form of online fraud involving malicious code and fraudulent websites. Tailgating - A physical security breach in which an unauthorized person follows an authorized individual to enter a secured premise. Eliciting information - A reporting format designed to elicit as much information as possible about individuals involved in a group or network.Whaling - A method used by cybercriminals to masquerade as a senior player at an organization and directly target senior individuals, with the aim of stealing or gaining access to their computer systems for criminal purposes.