Which of the following social engineering attacks is the best option if an attacker has physical access to a building and wants to attain access credentials to the network using nontechnical means?
A
Shoulder surfing
explanation
The attacker could employ shoulder surfing to gain the access credentials of a user as he is already inside (thus rendering tailgating and piggybacking pointless).
Comments