Which one of the following is the reason for why hyperlink spoofing attacks are usually successful?

A.
Most users requesting DNS name service do not follow hyperlinks.
B.
The attack performs user authentication with audit logs.
C.
The attack relies on modifications to server software.
D.
Most users do not make a request to connect to a DNS names, they follow hyperlinks.
Explanation:
The problem is that most users do not request to connect to DNS names or even URLs, they
follow hyperlinks… But, whereas DNS names are subject to “DNS spoofing” (whereby a DNS
server lies about the internet address of a server) so too are URLs subject to what I call “hyperlink
spoofing” or “Trojan HTML”, whereby a page lies about an URLs DNS name. Both forms of
spoofing have the same effect of steering you to the wrong internet site, however hyperlink
spoofing is technically much easier than DNS spoofing.
http://www.brd.ie/papers/sslpaper/sslpaper.html