CompTIA Security+ (SY0-601) — Question 676

An employee received a word processing file that was delivered as an email attachment. The subject line and email content enticed the employee to open the attachment. Which of the following attack vectors BEST matches this malware?

Answer options

• A. Embedded Python code
• B. Macro-enabled file
• C. Bash scripting
• D. Credential-harvesting website

Correct answer: B

Explanation

The correct answer is B, as macro-enabled files can run malicious code when opened, which is often the case with word processing attachments. Options A and C refer to scripting languages that are not typically associated with document files, while D pertains to phishing tactics rather than direct malware from attachments.