Phishing attack example - UGC NET Question

Moderate

U8 – Information and Communication Technology

Practice

Concepts: Cyber security awareness Email scams Identity theft Phishing Social engineering

Q: In ICT security, which situation best describes a phishing attack?

Using strong passwords and two-factor authentication for all accounts. Regularly updating your antivirus software from the official website. Backing up your data to an external hard drive. Receiving an email that pretends to be from a bank and asks you to click a link and enter your account password.

Answer & Explanation +

Answer:

Option D – Receiving an email that pretends to be from a bank and asks you to click a link and enter your account password.

Explanation:

Phishing is a social engineering technique where attackers impersonate trusted organisations to trick users into revealing sensitive data. Fake emails often copy logos and language of real institutions and direct victims to fraudulent websites. When users enter passwords or card details, attackers capture them for misuse. The described scenario matches this pattern exactly.

Option A:
Using strong passwords and two-factor authentication is a protective measure, not an attack. It reduces the chance that stolen credentials can be abused.

Option B:
Updating antivirus software from an official site is a recommended security practice. It helps detect malware but is not itself malicious.

Option C:
Backing up data protects against loss due to failure or attack but does not involve deception or credential theft.

Option D:
This option correctly highlights impersonation, deceptive email and a request for confidential information, which are hallmark features of phishing attacks.

Comment Your Answer

Answers commented by others

No answers commented yet. Be the first to comment!

Q: In ICT security, which situation best describes a phishing attack?

Answer:

Explanation:

Comment Your Answer

Sign In

Sign Up

Answers commented by others

Leave a Reply Cancel reply