Exam SY0-701 topic 1 question 437 discussion

The most likely vector in this scenario is the resume the user opened from a message. This strongly suggests a spear-phishing attack, where attackers send a targeted email with a malicious attachment (in this case, the resume). Once opened, the attachment likely executed malware that encrypted the user's files and displayed the ransom note

The most likely vector of the ransomware attack is the spear-phishing attachment from the resume the user opened in a message. Spear-phishing is a targeted attack where attackers send malicious attachments or links that appear legitimate. In this case, the resume attachment likely contained malicious code that executed the ransomware when opened. Why Not the Other Options? B. Watering hole: A watering hole attack compromises a trusted website that the target frequently visits. While the user browsed the company's website, there’s no evidence that the website itself was infected or used as the attack vector.

Watering holes are usually set up somewhere that you know people will go and set a trap there. he went to the companys website, and installed the OS update. It would be a sprear phissing incident if the email he recieved had the attachment, but instead he went to the watering hole. there is a case for both.

What is it: A type of social engineering attack, Spear Phishing is a more targeted version of phishing, where the attacker researches their target and makes the scam appear more legitimate. How it works: It usually starts with the attacker researching the target(s), then crafting an email (disguised as a trustworthy entity) tailored to the target's interests or habits, leading them to click on malicious links or attachments.