220-1102 Practice Question: A user receives an email that appears to be from…

Answer choices

Why each option matters

Good practice is not just finding the correct option. The wrong answers often show the exact trap the exam wants you to fall into.

Answer analysis

Why the other options are wrong

Understanding why incorrect options are tempting is as important as knowing the correct answer.

• ✗

  Reply to the email asking the sender to verify their identity

  Replying to a suspected phishing email confirms to the attacker that the email address is active and may lead to further targeted attacks. It does not help verify the sender's legitimacy.

• ✗

  Click the link to see if the page looks legitimate

  Clicking the link could take the user to a malicious website designed to steal credentials or install malware. This action is risky and should be avoided.

• ✗

  Delete the email and ignore it

  While deleting the email protects the user, ignoring it without reporting means the phishing attempt goes unaddressed, potentially affecting others. Reporting is the better practice.

Technical deep dive

How to think about this question

The most effective and responsible action when encountering a suspected phishing email, especially one impersonating a financial institution, is to report it to the legitimate organization. Forwarding the suspicious email to the bank's official customer service or security team provides them with crucial intelligence. This allows the bank to analyze the phishing attempt, identify the tactics being used by attackers, and potentially issue warnings to other customers or take down malicious infrastructure. It transforms a personal security concern into a collective defense mechanism, contributing to broader cybersecurity efforts. This action is proactive and beneficial beyond just protecting the individual user. This approach is superior to simply deleting the email because while deletion protects the individual, it does not address the underlying threat that could impact others. It also avoids the significant risks associated with interacting with the attacker, such as replying to verify an active email address or, more dangerously, clicking a malicious link. Clicking a link in a phishing email can lead to credential harvesting, drive-by malware downloads, or other forms of compromise, even if the user does not submit any information. By reporting, the user leverages the bank's resources and expertise to handle the threat appropriately, without exposing themselves to unnecessary risk.

More questions from this exam

Keep practising from the same exam bank, or move into a focused topic page if this question exposed a weak area.

FAQ

Questions learners often ask

Keep practising

More 220-1102 practice questions

• →A change advisory board (CAB) approved a standard change to update antivirus definitions on all servers. The technician…
• →A company's change management policy requires all server changes to be approved by the Change Advisory Board (CAB). A te…
• →A company is implementing a bring-your-own-device (BYOD) policy and needs to ensure that corporate data on employee mobi…
• →A company requires employees to present both a smart card and a PIN to log into their workstations. Which authentication…
• →A company requires all Windows 10 workstations to be able to join an Active Directory domain. Which edition of Windows 1…
• →A company wants to allow employees to securely access internal resources from home via the internet. Which method provid…