Creating a scenario in which the attacker pretends to be a member of the IT department to gain access to sensitive information is an example of pretexting.
The correct answer is true. Pretexting is a social engineering technique where the attacker creates a fictitious scenario or assumes a false identity to manipulate a target into divulging information or gaining unauthorized access. In this case, the attacker is pretending to be a member of the IT department, which is a typical example of pretexting. The goal is to establish trust or authority to elicit sensitive information from the victim.