CIW Professional Practice Exam 2025 – Complete Study Resource

The best security action for Raoul to take upon receiving an unexpected file attachment is to verify the sender before opening it. This step is crucial because it helps to ascertain whether the file is legitimate and from a trusted source. Unexpected attachments are often associated with phishing attempts or malware, which can lead to data breaches or system infections if opened without verification. By confirming the identity of the sender, Raoul can reduce the risk of encountering harmful software or being involved in a fraudulent scheme.

Opening the file and scanning it with antivirus software, although a common instinct, does not address the potential threat posed by the source of the file. If the sender is not verified, it increases the likelihood that the file might contain viruses or other malicious content. Scanning the hard disk with antivirus software is a reactive measure that does not prevent initial exposure to potential threats. Backing up important files is always a good practice for data security but does not address the immediate concern of an unexpected attachment. Therefore, verification of the sender is a proactive and essential step in maintaining cybersecurity.