CompTIA CASP+ (CAS-003) — Question 249

A company is the victim of a phishing and spear-phishing campaign. Users are clicking on website links that look like common bank sites and entering their credentials accidentally. A security engineer decides to use a layered defense to prevent the phishing or lessen its impact. Which of the following should the security engineer implement? (Choose two.)

Answer options

• A. Spam filter
• B. Host intrusion prevention
• C. Client certificates
• D. Log monitoring
• E. Content filter
• F. Data loss prevention

Correct answer: A, E

Explanation

Implementing a Spam filter helps to reduce the number of phishing emails reaching users by filtering out suspicious messages. A Content filter can block access to malicious websites and prevent users from entering sensitive information on fraudulent sites, thus providing additional protection against phishing attacks.