An employee receives an email that appears to be from their company's technical support, requesting confirmation of the employee's username and password for a system update via a provided link. What should be the employee's best course of action?
Reply to the email to confirm the authenticity of the request.
Follow the link in the email to avoid potential update delays.
Inform the company's security team about the email and refrain from clicking the link.
Distribute the email to coworkers to check if it was also sent to them.
The most appropriate response for the employee is to verify the legitimacy of the request by directly contacting the company's support team using known communication methods. This precaution helps avoid falling victim to a phishing attack, where attackers impersonate legitimate sources to obtain sensitive data. Replying directly or clicking on any links might result in credential theft if the email is a deceptive phishing attempt.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is phishing and how can I identify it?
Open an interactive chat with Bash
What steps should I take if I suspect a phishing email?
Open an interactive chat with Bash
What are the consequences of responding to a phishing email?