ALISON Social Engineering & Human Factor Security

Question 1

Which social engineering attack involves sending fraudulent emails that appear to come from a trusted source to steal credentials?

Accepted Answer

Phishing

Answer

Vishing

Answer

Smishing

Answer

Tailgating

Question 2

What is 'pretexting' in the context of social engineering?

Accepted Answer

Creating a fabricated scenario to manipulate a victim into revealing information

Answer

Sending bulk spam emails

Answer

Installing keyloggers on a target system

Answer

Intercepting wireless network traffic

Question 3

Which attack technique involves following an authorized person through a secured door without using credentials?

Accepted Answer

Tailgating

Answer

Shoulder surfing

Answer

Dumpster diving

Answer

Baiting

Question 4

What is the primary goal of security awareness training in an organization?

Accepted Answer

To teach employees to recognize and respond to social engineering attacks

Answer

To install antivirus software

Answer

To configure firewalls and IDS systems

Answer

To perform penetration testing on systems

Question 5

Which principle of influence do attackers exploit when they create a sense of urgency in phishing emails?

Accepted Answer

Scarcity

Answer

Social proof

Answer

Reciprocity

Answer

Authority

Question 6

What is 'vishing' in social engineering?

Accepted Answer

Voice-based phishing conducted over phone calls

Answer

Visual phishing using fake websites

Answer

Video-based spear phishing attacks

Answer

Phishing via SMS text messages