CompTIA CASP+ (CAS-004) — Question 144

A hospitality company experienced a data breach that included customer PII. The hacker used social engineering to convince an employee to grant a third-party application access to some company documents within a cloud file storage service Which of the following is the BEST solution to help prevent this type of attack in the future?

Answer options

• A. NGFW for web traffic inspection and activity monitoring
• B. CSPM for application configuration control
• C. Targeted employee training and awareness exercises
• D. CASB for OAuth application permission control

Correct answer: C

Explanation

The best solution is C, as targeted employee training and awareness exercises can significantly reduce the risk of social engineering attacks by educating employees on the tactics used by hackers. Options A and B focus on technical controls that may not address the human element involved in such breaches, while D, although useful for managing application permissions, does not directly prevent social engineering tactics.