Exam SY0-701 topic 1 question 3 discussion

Phishing is the fraudulent practice of sending emails, or other messages to cause an individual to reveal personal information. This question does not specify if this email was pretexting to butter up the employee, or make email more convincing (pretexting), nor does it specify this email being a trusted brand, or waiting on employee to type incorrectly to steal information.

Phishing is a type of social engineering attack where attackers trick individuals into revealing sensitive information (such as login credentials) by pretending to be a legitimate entity.

The correct answer is: ✅ D. Phishing Breakdown; The scenario describes a classic phishing attack, where: The employee receives an email claiming to be from a payment website. The email contains a malicious link that leads to a fake login page. The employee enters their credentials, but instead of proceeding, they get a "page not found" error (likely because the attacker has already captured the credentials). Why A is not the answer; A. Brand impersonation Brand impersonation happens when an attacker pretends to be a legitimate company (e.g., fake social media pages or fake customer service numbers). While phishing often involves brand impersonation, the key element here is credential theft, making phishing the better answer.

Phishing consists of sending emails that contain fake information or to acquire information from the user who opens an email.

They are basically fishing for information that they arent allowed to be privy to.

Phishing is a practice used for sending fraudulent emails in hopes of retrieving sensitive data

if a Technique was asked then Brand impersonation would have been the best answer....the best answer is phishing because phishing is a type of attack that involves fraudulent practice of sending email

This isn't what most people said, so tell me why this wrong: Phishing isn't a wrong answer, but Brand Impersonation -- which can be a type of phishing -- is a the BEST answer.

phishing takes place when you receive email asking for personnel information.

Phishing is a social engineering attack to trick people into releasing their personal information

Phishing

Phishing is a social engineering attack where attackers send fraudulent emails or messages that appear to come from reputable sources. These emails often contain links to fake websites that steal personal information, such as login credentials. In this case, the employee was tricked into entering their login information on a phony payment website, resulting in a “page not found” error message.

A. Brand impersonation. "In the context of email security, brand impersonation is a form of phishing cyber-attack that aims to solicit sensitive information from victims by posing as a legitimate brand." That reply is more accurate than just Phishing.

D. Phishing Phishing involves tricking individuals into providing sensitive information, such as login credentials, by pretending to be a legitimate entity. In this case, the employee was deceived into entering their login information on a fake website that impersonated a payment website.

This ACL configuration first permits outbound DNS traffic originating from the device with the IP address 10.50.10.25 and then denies all other outbound DNS traffic.

D. Phishing

Phishing