An employee receives a text message from the company's technical support team. The message asks to validate the employee's email credentials by replying with their login details due to irregular activities. Which action by the employee aligns with the best security practices in this scenario?
You selected this option
Inform peers about the request by forwarding the message to create awareness of potential security checks.
You selected this option
Verify the legitimacy of the message by contacting the support team through official company channels.
You selected this option
Respond with the email credentials as requested to promptly address the alleged security issue.
You selected this option
Disregard the message assuming it to be a part of the technical team's routine security checks.
The best security practice would be for the employee to validate the authenticity of the message by directly reaching out to the department responsible for technical issues using well-known and official communication channels, rather than through the communication initiated via the text message. This is because legitimate entities responsible for managing sensitive information typically do not solicit such information via SMS, as it is not a secure channel for transmitting sensitive data. Responding directly to the message could lead to a compromise of credentials.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are some signs that a message might be a phishing attempt?
Open an interactive chat with Bash
What official channels should employees use to contact technical support?
Open an interactive chat with Bash
What could be the potential consequences of responding to such messages?