A security consultant decides to use multiple layers of anti-virus defense, such as end user desktop anti-virus
and E-mail gateway. This approach can be used to mitigate which kind of attack?
A.
Forensic attack
B.
ARP spoofing attack
C.
Social engineering attack
D.
Scanning attack
don’t forget network firewall antivirus, some firewalls are actually good at this
Is it me.. or do all of those seem incorrect. How does AV protect against Social Engineering.
I agree. If I social engineer the users username and password a desktop antivirus or email gateway ain’t going to do jack.
I think social engineering is correct, in that if you compromise the user into clicking a link, hopefully the anti-virus will prevent any malware being downloaded, and likewise as most social enginnering is in the form of spam, the e-mail protection may hopefully filter out spam mails, prevent malicious links/documents from executing or at the least alert users that the e-mail sent is probably not safe.
The other three really have little to do with anti-malware/e-mail protection, so, social engineering seems to make the most sense in a round about way.