CompTIA Security+ Certification Exam SY0-601 Practice Test 100%ACCURATE GRADE A+ GURANTEED

A social engineering technique whereby attackers under disguise of a legitimate request attempt to gain access to confidential information is commonly referred to as: Phishing Privilege escalation Backdoor access Shoulder surfing Phishing Which of the following answers refer to smishing? (Select 2 answers) Social engineering technique E-mail communication Spam over Internet Telephony (SPIT) Text messaging Spam over Internet Messaging (SPIM) Social engineering technique Text messaging The practice of using a telephone system to manipulate user into disclosing confidential information is known as: Whaling Spear phishing Vishing Pharming Vishing Which of the following terms is commonly used to describe an unsolicited advertising message? Spyware Adware Malware Spam Spam What type of spam relies on text-based communication? Vishing SPIM Bluesnarfing SPIT SPIM Phishing scams targeting a specific group of people are referred to as: Vishing Spear phishing Spoofing Whaling Spear phishing In computer security, the term "Dumpster diving" is used to describe a practice of sifting through trash for discarded documents containing sensitive data. Found documents containing names and surnames of the employees along with the information about positions held in the company and other data can be used to facilitate social engineering attacks. Having the documents shredded or incinerated before disposal makes dumpster diving less effective and mitigates the risk of social engineering attacks. True False True A situation in which an unauthorized person can view another user's display or keyboard to learn their password or other confidential information is referred to as: Spear phishing Tailgating Shoulder surfing Spoofing Shoulder surfing Which of the following answers refer to the characteristic features of pharming? (Select 3 answers) Domain hijacking Traffic redirection Fraudulent website Password attack Credential harvesting Traffic redirection Fraudulent website Credential harvesting What is tailgating? Acquiring unauthorized access to confidential data Looking over someone's shoulder to get information Gaining unauthorized access to restricted areas by following another person Manipulating a user into disclosing confidential information Gaining unauthorized access to restricted areas by following another person In social engineering, the term "Elicitation" describes the use of casual conversation to extract non-public information from people without giving them the feeling they are being interrogated. True False True 1. Bracketing 2. Confidential bait 3. Deliberate false statements 4. Feigned ignorance 5. Denial of the obvious 6. Flattery 1. Providing a high and low estimate in order to entice a more specific number 2. Pretending to divulge confidential information in hopes of receiving confidential information in return 3. Saying something wrong in the hopes that the person will correct the statement with true information 4. Pretending to be ignorant of a topic in order to exploit the person's tendency to educate 5. Saying something wrong in the hopes that the person will correct the statement with true information 6. Using praise to coax a person into providing information Phishing scams targeting people holding high positions in an organization or business are known as: Vishing Smishing Whaling Pharming Whaling CONTINUED.....