Question

A company is the victim of a phishing and spear-phishing campaign. Users are clicking on website links that look like common bank sites and entering their credentials accidentally. A security engineer decides to use a layered defense to prevent the phishing or lessen its impact.

Which of the following should the security engineer implement? (Choose two.)

A. Spam filter
B. Host intrusion prevention
C. Client certificates
D. Log monitoring
E. Content filter
F. Data loss prevention

Answer 1

To combat phishing and lessen its impact, a security engineer should implement spam filters and content filters, which intercept phishing emails and block malicious websites respectively.

Step-by-step explanation:

The security engineer should implement a spam filter and a content filter to prevent phishing attacks or lessen their impact. A spam filter can intercept emails that contain phishing attempts before they reach the users' inboxes, thereby reducing the chance of users clicking on malicious links. A content filter can block access to known malicious websites or web content that doesn't comply with the company's security policy, further protecting users from accidentally entering their credentials on fraudulent websites.

Implementing these measures, along with increased education for users on how to detect phishing attempts, can greatly improve a company's resilience against such attacks. Adding layers such as two-factor authentication and promoting stronger passwords can also help in safeguarding the organization's data and integrity.