A security analyst is reviewing the organization's incident reports and notices an incident where attackers sent deceptive messages to employees' mobile phones with the intent to trick them into sharing sensitive information. What type of attack does this scenario describe?
This scenario describes a phishing attack that is conducted through SMS messages, commonly known as 'SMS phishing' or by its other name Smishing. Both 'Spyware Installation' and 'Direct Malware Injection' can be results of this kind of attack if the recipient takes the bait, but they are not names of the attack method itself. 'Exploit Kits via MMS' involve multimedia content and are not the same as text-based phishing attacks.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What exactly is SMS phishing (Smishing)?
Open an interactive chat with Bash
How can I identify a Smishing attempt?
Open an interactive chat with Bash
What should I do if I suspect I've been targeted by a Smishing attack?