Review the incident report. A fake HR login page was sent to several employees through email. The page copied the company’s branding and captured usernames and passwords. The attacker later used the stolen credentials to sign in through the company’s web VPN. Which two MITRE ATT&CK tactics best characterize this report? (Choose two answers)

• A. Initial Access
• B. Command and Control
• C. Credential Access
• D. Defense Evasion

Correct Answer: A,C

Brave-Dump Clients Votes