A user receives a call from someone in IT services, asking her to confirm her username and password for auditing purposes. Which security threat does this represent?

A user receives a call from someone in IT services, asking her to confirm her username and password for auditing purposes. Which security threat does this represent?

• Anonymous keylogging
• DDoS
• Social engineering
• Spam

Explanation: Social engineering involves attempting to gain the confidence of an employee and convince that person to divulge confidential and sensitive information, such as usernames and passwords. DDoS attacks, spam, and keylogging are all examples of software-based security threats, not social engineering.

Exam with this question: 3.11.3 Module Quiz - Network Security Concepts