CompTIA Security+ (SY0-601) — Question 690

A help desk technician receives an email from the Chief Information Officer (CIO) asking for documents. The technician knows the CIO is on vacation for a few weeks. Which of the following should the technician do to validate the authenticity of the email?

Answer options

• A. Check the metadata in the email header of the received path in reverse order to follow the email's path.
• B. Hover the mouse over the CIO's email address to verify the email address.
• C. Look at the metadata in the email header and verify the ג€From:ג€ line matches the CIO's email address.
• D. Forward the email to the CIO and ask if the CIO sent the email requesting the documents.

Correct answer: A

Explanation

The correct answer is A because checking the metadata in the email header allows the technician to trace the email's origin and determine if it was sent from a legitimate source. Options B and C are less reliable methods for verification, as they can be easily spoofed, and option D could lead to a delay in response or further confusion since the CIO is on vacation.