CompTIA Security+ (SY0-701) — Question 459

A company's accounting department receives an urgent payment message from the company's bank domain with instructions to wire transfer funds. The sender requests that the transfer be completed as soon as possible. Which of the following attacks is described?

Answer options

• A. Business email compromise
• B. Vishing
• C. Spear phishing
• D. Impersonation

Correct answer: A

Explanation

The correct answer is A, Business email compromise, which involves a cybercriminal impersonating a legitimate source to trick employees into making unauthorized transactions. Options B (Vishing) and C (Spear phishing) refer to different types of attacks involving voice or targeted phishing, while D (Impersonation) is a broader term that doesn't specifically capture the method of exploiting email for financial gain.