GIAC Foundational Cybersecurity Technologies 2025 – 400 Free Practice Questions to Pass the Exam

Phishing refers to the act of using social engineering tactics to deceive individuals into disclosing sensitive information, such as usernames, passwords, or credit card details. This typically involves the attacker impersonating a trusted entity through emails, text messages, or websites that appear legitimate. The goal is to trick the victim into believing they are interacting with a trusted source, which prompts them to provide personal information or click on malicious links.

The other options, while relevant to cybersecurity, describe different concepts. Malware refers to malicious software designed to harm or exploit devices or networks, and credential securing techniques involve measures or technologies applied to protect user credentials rather than tricking users into revealing them. Lastly, data encryption during transit focuses on securing data as it travels across networks but does not involve deception or manipulation of individuals. This highlights the distinctive nature of phishing as a tactic rooted in psychological manipulation rather than technical exploits.