What type of attack did Don perform on Johana's email account to steal her files?

In this scenario, the most suitable type of attack for stealing files from Johana's email account would be a phishing attack. This method typically involves tricking the victim into providing sensitive information, such as passwords or other credentials, by masquerading as a trustworthy entity in electronic communications.

Phishing often takes the form of deceptive emails or messages that appear legitimate. The attacker, in this case Don, could craft an email that looks like it comes from a trusted source, prompting Johana to click on a link or download an attachment that would compromise her account. Once Don has her credentials, he can access the account and steal files.

In contrast, a brute-force attack involves systematically guessing passwords until the correct one is found, which is less targeted and usually requires more time and computational resources. Other types of attacks, like a Trojan horse, involve malicious software that is disguised as legitimate software, while SQL injection targets databases by submitting malicious SQL queries through input fields. These methods do not align as closely with the social engineering aspect typically associated with phishing, which is designed to manipulate users into voluntary disclosure of their sensitive information.