CFE – Financial Transactions and Fraud Schemes — Question 23

Which of the following is a method for gaining unauthorized access to a computer system whereby the attacker deceives victims into disclosing personal information or convinces them to commit acts that facilitate the attacker’s intended scheme?

Answer options

• A. Shoulder surfing
• B. Spoofing
• C. Scavenging
• D. Social engineering

Correct answer: B

Explanation

The correct answer is B, as spoofing involves deceiving individuals to gain unauthorized access to systems or information. Shoulder surfing, scavenging, and social engineering are related concepts, but spoofing specifically refers to the act of impersonating someone or something to mislead victims.