Which of the following will MOST likely reduce the chances of an unauthorized individual gaining
access to computing resources by pretending to be an authorized individual needing to have his,
her password reset?
A.
Performing reviews of password resets
B.
Conducting security awareness programs
C.
Increasing the frequency of password changes
D.
Implementing automatic password syntax checking
Explanation:
Social engineering can be mitigated best through periodic security awareness training for staff
members who may be the target of such an attempt. Changing the frequency of password
changes, strengthening passwords and checking the number of password resets may be
desirable, but they will not be as effective in reducing the likelihood of a social engineering attack.