GAQM ISO27-13-001 Exam - Topic 8 Question 103 Discussion

Actual exam question for GAQM's ISO27-13-001 exam

Question #: 103
Topic #: 8

Someone from a large tech company calls you on behalf of your company to check the health of your PC, and therefore needs your user-id and password. What type of threat is this?

ASocial engineering threat

BOrganisational threat

CTechnical threat

DMalware threat

Show Suggested Answer

Suggested Answer: A

by Man at Nov 25, 2025, 08:20 AM

Limited Time Offer

25%

Off

Get Premium ISO27-13-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Lizette

1 month ago

I feel uneasy about it. Always verify before sharing anything!

upvoted 0 times

...

Francoise

2 months ago

No way! It’s clearly A. They want to exploit trust.

upvoted 0 times

...

Geraldine

2 months ago

I’m not sure. Could it be B) Organisational threat?

upvoted 0 times

...

Gerald

2 months ago

I think it’s A too. They’re pretending to help but it’s a trap.

upvoted 0 times

...

Mindy

2 months ago

I thought it was just a technical threat, but this makes sense.

upvoted 0 times

...

Paz

2 months ago

100% agree, it's all about manipulation.

upvoted 0 times

...

Joanna

2 months ago

Wait, are we really giving out passwords over the phone?

upvoted 0 times

...

Lavera

3 months ago

Definitely a social engineering threat!

upvoted 0 times

...

Daniel

3 months ago

A. Social engineering is the easiest way for attackers to gain access. Protect your credentials!

upvoted 0 times

...

Xuan

3 months ago

A all the way! Hackers love to trick people into giving up their passwords. Lol, amateurs.

upvoted 0 times

...

Norah

4 months ago

I'd go with A. Trying to get sensitive info through deception is a textbook social engineering attack.

upvoted 0 times

...

Eleonora

4 months ago

Gotta be A. No legitimate tech support would ever ask for your password.

upvoted 0 times

...

Stephanie

4 months ago

A) Definitely a social engineering threat. Asking for login credentials is a classic tactic.

upvoted 0 times

...

Major

4 months ago

I’m a bit confused because it seems like a technical threat too, but I guess it’s more about the manipulation aspect.

upvoted 0 times

...

Emogene

4 months ago

I remember a practice question similar to this, and it was labeled as social engineering. I think that’s the right answer here too.

upvoted 0 times

...

Gwenn

4 months ago

I’m not so sure, but it feels like it could also be an organizational threat since it involves company security.

upvoted 0 times

...

Noel

5 months ago

Social engineering for sure. I'll stay calm, ask for their contact information, and report this to our security team.

upvoted 0 times

...

Alisha

5 months ago

I'm a bit confused. Could this also be a technical threat if they're trying to gain access to our systems? I'll need to double-check the definitions.

upvoted 0 times

...

My

5 months ago

Definitely a social engineering threat. I'll politely decline and suggest they contact our IT department directly.

upvoted 0 times

...

Daren

5 months ago

Agreed! It feels so wrong to give out personal info.

upvoted 0 times

...

Cheryl

5 months ago

I think this is definitely a social engineering threat, right? They’re trying to manipulate you into giving up your credentials.

upvoted 0 times

...

Merrilee

5 months ago

Definitely A) Social engineering threat. They’re trying to manipulate you.

upvoted 0 times

...

Eun

6 months ago

No way! People actually fall for this?

upvoted 0 times

...

Brett

6 months ago

Hmm, I'm not entirely sure. Could it also be an organizational threat if the company is trying to gain unauthorized access? I'll need to think this through carefully.

upvoted 0 times

...