CompTIA PenTest+ (PT0-002) — Question 174

A penetration tester discovered that a client uses cloud mail as the company's email system. During the penetration test, the tester set up a fake cloud mail login page and sent all company employees an email that stated their inboxes were full and directed them to the fake login page to remedy the issue. Which of the following BEST describes this attack?

Answer options

• A. Credential harvesting
• B. Privilege escalation
• C. Password spraying
• D. Domain record abuse

Correct answer: A

Explanation

The correct answer is A, as the attacker is attempting to collect user credentials through a phishing scheme by directing employees to a fake login page. The other options do not apply; privilege escalation involves gaining higher access than permitted, password spraying is a brute-force method targeting multiple accounts with common passwords, and domain record abuse relates to manipulating domain registrations, none of which fit this scenario.