Certified Ethical Hacker (CEH v11) — Question 33

Steve, an attacker, created a fake profile on a social media website and sent a request to Stella. Stella was enthralled by Steve's profile picture and the description given for his profile, and she initiated a conversation with him soon after accepting the request. After a few days, Steve started asking about her company details and eventually gathered all the essential information regarding her company.
What is the social engineering technique Steve employed in the above scenario?

Answer options

• A. Baiting
• B. Piggybacking
• C. Diversion theft
• D. Honey trap

Correct answer: D

Explanation

Steve utilized the honey trap technique, as he lured Stella in with an appealing profile to gain her trust and extract sensitive company information. The other options do not fit this scenario: baiting involves enticing someone to take an action, piggybacking refers to gaining unauthorized access by following an authorized user, and diversion theft pertains to rerouting shipments or deliveries.