Certified Ethical Hacker (CEH v12) — Question 108

Johnson, an attacker, performed online research for the contact details of reputed cybersecurity firms. He found the contact number of sibertech.org and dialed the number, claiming himself to represent a technical support team from a vendor. He warned that a specific server is about to be compromised and requested sibertech.org to follow the provided instructions. Consequently, he prompted the victim to execute unusual commands and install malicious files, which were then used to collect and pass critical information to Johnson’s machine.
What is the social engineering technique Steve employed in the above scenario?

Answer options

• A. Diversion theft
• B. Quid pro quo
• C. Elicitation
• D. Phishing

Correct answer: B

Explanation

The correct answer is B, Quid pro quo, because Steve offered a service or assistance in exchange for information or actions from the victim. The other options, such as A (Diversion theft) and C (Elicitation), do not accurately describe the exchange of services for actions, while D (Phishing) typically involves deceit through emails or messages rather than a direct interaction like in this case.