CompTIA Network+ (N10-007) — Question 406

A user has just received a call from someone claiming to be from the company help desk and asking for password information to assist the user with a password reset. Company policy, however, states the help desk will not ask for password information. Which of the following has the user just experienced?

Answer options

• A. Logic bomb
• B. Social engineering
• C. Phishing
• D. Insider threat

Correct answer: B

Explanation

The situation described is an example of social engineering, where the caller manipulates the user into divulging sensitive information under false pretenses. A logic bomb is a type of malicious code, phishing typically involves emails rather than phone calls, and an insider threat refers to risks posed by individuals within the organization, none of which apply in this scenario.