Exam SY0-601 topic 1 question 486 discussion

A. Watering-hole attack

A. Watering-hole attack

A. Watering-hole attack

The attacker is using a watering-hole attack. This technique involves infecting a legitimate website that is frequented by the target organization's employees, with the goal of compromising their devices. The attacker can then use the compromised devices as a foothold into the organization's network. Pretexting, typosquatting, and impersonation are all different social engineering techniques used to trick individuals into divulging sensitive information or taking certain actions.

The technique that the attacker is using in this scenario is a A. Watering-hole attack. A watering-hole attack involves compromising a website that is frequently visited by the target group, in this case the company’s employees. The attacker infects the website with malware in the hope that the target group will visit the site and become infected with the malware. Received message.

The attacker is using the technique of "Watering-hole attack". This attack involves infecting a website that is frequently visited by the target organization's employees, with the intention of infecting the employees' devices with malware. The attacker hopes that the employees will unknowingly download and install the malware on their devices, which can then be used to gain access to the organization's network.

-A is correct The attacker is using a watering-hole attack, which involves infecting a legitimate website that the targeted organization's employees are likely to visit. The attacker's goal is to infect the employees' devices with malware when they visit the compromised website. By infecting a popular website, the attacker increases their chances of success since it's more likely that employees will visit the infected site.