CompTIA Security+ (SY0-601) — Question 713

A company is receiving emails with links to phishing sites that look very similar to the company's own website address and content. Which of the following is the
BEST way for the company to mitigate this attack?

Answer options

• A. Create a honeynet to trap attackers who access the VPN with credentials obtained by phishing.
• B. Generate a list of domains similar to the company's own and implement a DNS sinkhole for each.
• C. Disable POP and IMAP on all Internet-facing email servers and implement SMTPS.
• D. Use an automated tool to flood the phishing websites with fake usernames and passwords.

Correct answer: B

Explanation

Implementing a DNS sinkhole for domains that resemble the company's own is the most effective way to mitigate phishing attacks, as it prevents users from accessing malicious websites. The other options do not directly address the issue of redirecting users away from phishing sites or could lead to further complications without effectively stopping the threat.