An audit reveals that a financial executive received highly specific emails requesting a large sum to be transferred to an external account. The messages look like they are sent from a reputable financial group and mention details that senior managers commonly discuss. Which technique has been used?
Calls claiming to be technical experts who contact junior employees for system repairs
Network-wide messages instructing each department to install new software patches
Customized emails sent to a key decision-maker referencing urgent financial matters
A wide distribution email campaign aimed at all staff requesting login passwords
This style of attack involves crafting emails that go after a high-level individual with details relevant to senior roles. It is often known as whaling. The messages appear authentic because they include information that a general staff member would be less likely to know. The other answers reference broad or non-targeted attacks, phone-based attempts, or tactics aimed at entry-level users. They do not align with the executive focus and specialized data seen here.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is whaling in cybersecurity?
Open an interactive chat with Bash
How does whaling differ from other phishing attacks?