CompTIA Security+ (SY0-701) — Question 177

A new employee logs in to the email system for the first time and notices a message from human resources about onboarding. The employee hovers over a few of the links within the email and discovers that the links do not correspond to links associated with the company. Which of the following attack vectors is most likely being used?

Answer options

• A. Business email
• B. Social engineering
• C. Unsecured network
• D. Default credentials

Correct answer: B

Explanation

The correct answer is B, Social engineering, as it involves manipulating individuals into revealing confidential information, often through deceptive emails. The other options do not apply to this scenario; Business email typically refers to phishing attempts, Unsecured network relates to connectivity risks, and Default credentials are about weak passwords rather than deceptive links.