ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-501 All Questions

View all questions & answers for the SY0-501 exam
Go to Exam

Exam SY0-501 topic 1 question 524 discussion

Actual exam question from CompTIA's SY0-501
Question #: 524
Topic #: 1
[All SY0-501 Questions]

A help desk technician receives a phone call from an individual claiming to be an employee of the organization and requesting assistance to access a locked account. The help desk technician asks the individual to provide proof of identity before access can be granted. Which of the following types of attack is the caller performing?

  • A. Phishing
  • B. Shoulder surfing
  • C. Impersonation
  • D. Dumpster diving
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by MelvinJohn at June 2, 2020, 12:47 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
MagicianRecon
Highly Voted 4 years, 11 months ago
Not phishing or vhishing because the caller is not trying to gain any information from the callee. He is impersonating as an employee.
upvoted 6 times
...
comeragh
Most Recent 3 years, 11 months ago
'Vishing' is over the phone phishing where scammers will try to persuade people to share information by posing as bank staff or other financial service employees. Answer is clearly Impersonation.
upvoted 1 times
...
jinz24
4 years, 6 months ago
Answer C. A. Phishing - Usually done via email and trying to 'phish' to a number of users not one single individual. B. Shoulder surfing - Looking over a user whist they are on a device to steal information. C. Impersonation - The question says what type of 'attack' is this - indicating that the user on the phone IS NOT an employee, the user on the phone is 'impersonating' the real employee. I agree it should really be 'vishing' as it is over the phone but this is not a answer option for this specific question. D. Dumpster diving - Going through garbage to try and find things like credentials, credit card numbers, etc.
upvoted 2 times
...
Star_rulz
4 years, 7 months ago
How do we know it's impersonation ? There's no proof that he is not an employee. ??
upvoted 1 times
...
Wilfred
4 years, 11 months ago
so I assume C is correct as Impersonation is regard as to spoof a real employee......
upvoted 1 times
...
Wilfred
4 years, 11 months ago
why no vishing in the answer as it is the correct one....
upvoted 2 times
...
MelvinJohn
4 years, 11 months ago
A or C? Impersonation is defined as something done in person. Vishing is defined as phishing over the phone.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel