Policies, procedures and end-user training are effective ways to mitigate:
A.
zero-day attacks
B.
attempted DDoS attacks
C.
man-in-the-middle attacks
D.
social engineering attempts
Explanation:
https://www.sans.org/reading-room/whitepapers/bestprac/defenses-zero-day-exploits-various-sizedorganizations-35562
I’m pretty sure the answer is D?