312-50V11 · Question #899
Richard, an attacker, aimed to hack loT devices connected to a target network. In this process. Richard recorded the frequency required to share information between connected devices. After obtaining
The correct answer is B. Replay attack. Richard captured IoT radio frequency command signals and retransmitted them to repeat device actions - a classic replay attack.
Question
Richard, an attacker, aimed to hack loT devices connected to a target network. In this process. Richard recorded the frequency required to share information between connected devices. After obtaining the frequency, he captured the original data when commands were initiated by the connected devices. Once the original data were collected, he used free tools such as URH to segregate the command sequence. Subsequently, he started injecting the segregated command sequence on the same frequency into the loT network, which repeats the captured signals of the devices. What Is the type of attack performed by Richard In the above scenario?
Options
- ASide-channel attack
- BReplay attack
- CCrypTanalysis attack
- DReconnaissance attack
How the community answered
(58 responses)- A2% (1)
- B91% (53)
- C2% (1)
- D5% (3)
Why each option
Richard captured IoT radio frequency command signals and retransmitted them to repeat device actions - a classic replay attack.
A side-channel attack exploits information leaked from a system's physical implementation such as power consumption or timing, not the capture and retransmission of radio signals.
A replay attack involves intercepting legitimate transmitted data and retransmitting it to duplicate an authorized action. Richard used URH (Universal Radio Hacker) to capture and analyze raw RF command sequences from IoT devices, then injected those same captured signals back onto the same frequency - the defining characteristic of a replay attack against wireless IoT communication.
A cryptanalysis attack focuses on breaking or weakening cryptographic algorithms and keys, not on recording and replaying wireless command sequences.
Reconnaissance is a passive information-gathering phase used to learn about a target, not an active attack that injects replayed signals into a network.
Concept tested: IoT wireless replay attack using RF signal capture
Source: https://owasp.org/www-community/attacks/Replay_Attack
Topics
Community Discussion
No community discussion yet for this question.