A security analyst is discussing cybersecurity with a family member who mentions a recent incident. The family member received an unsolicited phone call from someone claiming to be a support technician from a major software vendor. The caller convinced the family member that their computer was infected with a virus and guided them to install a "removal tool", which was actually malware. Which of the following social engineering attacks BEST describes this incident?
The correct answer is vishing. Vishing, or voice phishing, is a social engineering attack that occurs over the phone, where attackers impersonate a legitimate entity to deceive victims into providing sensitive information or installing malware. The scenario describes a classic tech support scam executed via a phone call.
Spear phishing is incorrect because it involves highly targeted attacks sent via email, not phone calls.
Tailgating is a physical security attack where an unauthorized person follows an authorized individual into a secure area and is not relevant to this scenario.
A watering hole attack is a strategy where an attacker compromises a website that is frequently visited by a specific group of users, rather than initiating contact via a phone call.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What does vishing stand for and how does it work?
Open an interactive chat with Bash
How is vishing different from spear phishing?
Open an interactive chat with Bash
How can someone prevent falling victim to vishing attacks?