CompTIA CASP+ (CAS-003) — Question 72

A company has gone through a round of phishing attacks. More than 200 users have had their workstation infected because they clicked on a link in an email. An incident analysis has determined an executable ran and compromised the administrator account on each workstation. Management is demanding the information security team prevent this from happening again.
Which of the following would BEST prevent this from happening again?

Answer options

• A. Antivirus
• B. Patch management
• C. Log monitoring
• D. Application whitelisting
• E. Awareness training

Correct answer: E

Explanation

The correct answer is E, Awareness training, as it educates users on recognizing phishing attempts and reduces the likelihood of clicking on malicious links. While options like Antivirus and Patch management are important for security, they do not address the human factor that often leads to successful phishing attacks. Application whitelisting and Log monitoring are also useful, but they do not directly prevent users from falling for phishing scams.