CompTIA Security+ (SY0-601) — Question 423

An attacker tricks a user into providing confidential information. Which of the following describes this form of malicious reconnaissance?

Answer options

• A. Phishing
• B. Social engineering
• C. Typosquatting
• D. Smishing

Correct answer: B

Explanation

The correct answer is B, Social engineering, as it encompasses techniques used to manipulate individuals into divulging confidential information. Option A, Phishing, is a specific type of social engineering that often occurs via email. Options C and D, Typosquatting and Smishing, refer to other forms of cyber threats that do not primarily involve tricking users into sharing confidential information directly.