An employee at a targeted company downloads an IoT software update from a vendor’s site that has been compromised with a Trojaned software update. What kind of threat is this considered as?
A. social engineering
B. inside threat
C. sophisticated actors threat
D. outside threat
The correct answer is B:
https://pdfs.semanticscholar.org/9120/50905a8533a525a10dcb9fe1dc303a53df9c.pdf