Which stage of the cyber attack lifecycle makes it important to provide ongoing education to users on spear phishing links, unknown emails, and risky websites?
a
Reference :
https://www.paloaltonetworks.com/cyberpedia/how-to-break-the-cyber-attack-lifecycle
The answer is B, not A. In reconnaissance, you educate users what inside info they shouldn't post: "sensitive documents, customer lists, event attendees, job roles and responsibilities (i.e., using specific security tools within an organization), etc."
https://www.paloaltonetworks.com/cyberpedia/how-to-break-the-cyber-attack-lifecycle