CompTIA Security+ (SY0-601) — Question 621

An organization is concerned about hackers bypassing MFA through social engineering of phone carriers. Which of the following would most likely protect against such an attack?

Answer options

• A. Receiving alerts about unusual log-in activity
• B. Receiving a six-digit code via SMS
• C. Receiving a push notification to a mobile application
• D. Receiving a phone call for automated approval

Correct answer: C

Explanation

The correct answer is C, as push notifications require the user to actively engage with a mobile app, making it harder for attackers to intercept compared to SMS. Options A and D do not provide direct authentication methods, while B is vulnerable to interception through social engineering attacks on phone carriers.