Q: 7
It work security team noticed that an increasing number of employees are becoming victims of
phishing attacks. Which security program should be implemented to mitigate the problem?
Options
Discussion
My pick: D, unless the question means technical only but phishing is a user problem first. If the attack was malware via USB I'd rethink but here user awareness training flips the outcome.
Option D that’s the main one for phishing since it targets the user side.
Option D but does it specify if technical controls are already in place? That could change things.
D , had something like this in a mock. Phishing is about tricking users more than bypassing tech controls, so user awareness training (D) gets to the root cause. Firewalls and patches won’t really stop someone from clicking a suspicious link. Pretty sure D is the intended answer here, but if anyone thinks otherwise, I’m interested to hear it.
Don't think A helps directly here, since phishing is about tricking users not email software bugs. D.
D works since phishing is all about tricking users. Technical stuff like firewalls (C) or patches (A) help, but training people to spot fake emails hits the root of the issue. Pretty sure that's what they're after here, unless I'm missing another angle.
Probably D, I've seen similar in past exam reports where user awareness training was the correct focus for phishing.
Pretty sure it's D since user training is the main defense for phishing.
Man, these Cisco questions always love their user awareness angle. D imo
D imo, seen similar in official practice exams and user training is the key mitigation here.
Be respectful. No spam.
