A C-level executive has contacted the security team and asked if you can verify the authenticity of an email. The email appears to have come from a bank saying their password has been compromised. The executive states they don't use this bank. After some investigation you find this email went out to around fifty percent of internal email addresses. Which term correctly describes this attack scenario?
This scenario describes a phishing attack, but tries to trick you by mentioning a high level executive was targeted which would make it whaling. However because half the internal email addresses were also sent this email it is a more generic phishing attack. Whaling would apply only if high level executives were targeted, not a large chunk of the organization.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is phishing?
Open an interactive chat with Bash
How can I recognize a phishing email?
Open an interactive chat with Bash
What is the difference between phishing and whaling?