CompTIA Security+ (SY0-601) — Question 262

A candidate attempts to go to http://comptia.org but accidentally visits http://comptiia.org. The malicious website looks exactly like the legitimate website. Which of the following BEST describes this type of attack?

Answer options

• A. Reconnaissance
• B. Impersonation
• C. Typosquatting
• D. Watering-hole

Correct answer: C

Explanation

The correct answer is C, Typosquatting, which refers to the practice of registering domain names that are misspellings of popular websites to capture unsuspecting users. Reconnaissance (A) involves gathering information, impersonation (B) refers to pretending to be someone else, and watering-hole attacks (D) target specific groups by infecting websites they are likely to visit, none of which apply here.