Certified Incident Handler (CIH) Practice Ecam

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the Certified Incident Handler (CIH) Exam. Enhance your knowledge with interactive quizzes and detailed insights into cyber incident handling. Boost your exam readiness with our expert-designed questions!

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

What type of attack involves sending a false link via an email to collect personal data from targeted users?

Phishing
Vishing
Smishing
Spamming

The correct answer is: Phishing

Phishing is a type of cyber attack where an attacker sends fraudulent emails that appear to be from a legitimate source in an attempt to trick recipients into revealing sensitive information, such as usernames, passwords, and financial details. This technique often involves embedding a malicious link within the email that redirects users to a spoofed website designed to look like a trusted entity. The method relies heavily on social engineering tactics to create a sense of urgency or trust, motivating targets to click on the link and disclose their personal data. Phishing attacks can be very effective because they exploit human psychology rather than technical vulnerabilities. In contrast, other options describe different forms of targeting individuals through communication channels. Vishing involves voice calls, where scammers use phone calls to extract sensitive information. Smishing is similar to phishing but occurs through SMS text messages instead of emails. Spamming generally refers to unsolicited emails that are sent in bulk, often for advertising purposes, without a focused effort to deceive regarding a specific threat or to collect personal data. Thus, phishing is distinctly characterized by its use of deceitful emails containing false links to harvest personal information.