Examice

Exam IIA-CIA-Part3 All QuestionsBrowse all questions from this exam

Question 203

A newly appointed board member received an email that appeared to be from the company’s CEO. The email stated:

“Good morning. As you remember, the closure of projects is our top priority. Kindly organize prompt payment of the attached invoice for our new solar energy partners.”

The board member quickly replied to the email and asked under which project the expense should be accounted. Only then did he realize that the sender’s mail domain was different from the company’s. Which of the following cybersecurity risks nearly occurred in the situation described?

A risk of spyware and malware

A risk of corporate espionage

A ransomware attack risk

A social engineering risk

Correct Answer: D

The situation described involves an email that appears to be from the company's CEO but has a different mail domain. This indicates an attempt to deceive the board member into performing an action based on false information, which aligns with a social engineering risk. Social engineering is the tactic of manipulating individuals into divulging confidential information or performing actions that they normally wouldn't. This is not directly related to spyware, malware, corporate espionage, or ransomware, which typically involve different methods of attack.

Discussion

KonradKOption: D

Should it be A or D? I think A as invoice is being attached and it may prone to spyware or malware