An employee receives a suspicious message instructing them to verify their account by clicking a link and submitting their login details. Just last week, the staff had a seminar discussing the risks of deceptive electronic communications. What should the employee do next?
Follow the instructions in the message, assuming it is a standard security procedure
Inform the company's security personnel regarding the message
Access the link to verify its source but do not enter any login details
Send a response inquiring about the authenticity of the message
The right choice is to immediately notify the company's security personnel without interacting with the message. This is a common tactic used in phishing attempts to gain access to confidential systems and data. Interacting with the link or divulging any information could lead to data breaches and unauthorized changes to information. The other selections pose various risks and do not align with security best practices taught in training.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is phishing?
Open an interactive chat with Bash
What should I do if I accidentally clicked a suspicious link?