Exam SK0-005 topic 1 question 370 discussion

A. Ransomware (INCORRECT) Ransomware can be mitigated with advanced endpoint protection, regular backups, and user education. Technologies like anti-malware tools, intrusion detection systems, and regular software updates are effective against ransomware. B. Backdoor (INCORRECT) Backdoors can be mitigated through regular system and network monitoring, vulnerability assessments, and the use of security tools designed to detect unauthorized access points. C. SQL Injection (INCORRECT) SQL injection can be mitigated with proper coding practices, such as the use of prepared statements and input validation. Web application firewalls (WAFs) and code audits are solutions against SQL injection attacks. ***D. Phishing (CORRECT) Phishing primarily exploits human factors rather than technology vulnerabilities, making it challenging to mitigate purely with technology.

D. Phishing Phishing attacks rely heavily on social engineering tactics, manipulating individuals into divulging sensitive information or performing actions that compromise security. While technological measures such as email filters and anti-phishing tools can help detect and mitigate phishing attempts to some extent, they cannot entirely eliminate the human factor involved. Education and awareness among users are crucial to effectively combat phishing attacks.

Mitigating each of these attacks presents its own set of challenges, but generally speaking, SQL injection (option C) is often considered one of the most difficult to mitigate with technology alone. SQL injection attacks target the vulnerability in web applications that use SQL databases. By injecting malicious SQL code into input fields, attackers can manipulate the database queries executed by the application, potentially gaining unauthorized access to data or performing other malicious actions.