Social-Engineering — CompTIA A+ Core 2 (220-1102) Practice Questions
Social engineering is a category of attack that manipulates people rather than exploiting technical vulnerabilities, relying on deception to get users to reveal credentials, install malware, or grant unauthorized access. The A+ Core 2 exam tests recognition of common techniques including phishing, spear phishing, vishing (voice-based deception), tailgating, shoulder surfing, and pretexting. Technicians are expected to know appropriate user education responses and organizational policies, such as always verifying identity before providing support or resetting credentials. Because social engineering bypasses technical controls entirely, it is addressed in both the Security and Operational Procedures domains of the exam.
Free questions on social-engineering
What type of malware disguises itself as legitimate software to trick users into installing it?
Free question · easy · full answer + explanation
More social-engineering questions in the full bank
- A technician receives a request from a user claiming to be the company CEO asking for a password reset without verification. What should the technician do? Unlock answer & explanation →