Q: 1
Which of the following types of physical security controls would most likely be a target of a social
engineering attack?
Options
Discussion
Honestly, CompTIA always does this by mixing tech and people in answers. It's A.
I see how D could work since attackers sometimes trick staff to override biometric locks, especially if there's poor policy or people get lazy about checking. D for that angle, since tech gets bypassed via humans now and then. Open to other takes though.
Not buying D here, since social engineering really works best on people, not tech. A.
Likely D since I've seen some CompTIA prep material say attackers try to trick staff into overriding biometric locks, but I might be mixing up SE with technical bypass. Official guide and practice questions usually push human controls as the main target though. Anyone studied labs with social engineering angles?
A , saw similar wording on a practice exam. Human-based controls like security guards are way more likely to be targeted in social engineering than hardware barriers. Happy to hear if anyone's seen different in real test reports.
Its A, not D. Social engineering tricks people, not physical devices like biometrics or bollards.
Option D makes sense if you consider that attackers might try to trick employees into letting them use someone else's biometric credentials or override the lock. While guards are a common social engineering target, if the policy allows staff intervention on biometric problems, attackers could exploit that loophole. Pretty sure it's usually A, but I can see D getting hit if there's weak process around the device. Disagree?
D but could see A making sense too if we focus on the human part.
Probably A here. Social engineering almost always hits the human, and a security guard is definitely more vulnerable than fences or locks.
A for sure. Social engineering targets the human element, so a security guard is most likely. D looks tempting but it's a trap since tech controls aren't as easily manipulated as people. Pretty sure that's what CompTIA wants here, but open to debate.
Be respectful. No spam.
