312-50V12 · Question #32
312-50V12 Question #32: Real Exam Question with Answer & Explanation
The correct answer is D: Replay attack. Richard captured legitimate IoT radio frequency signals and replayed them to impersonate authorized devices, which is the definition of a replay attack.
Question
Richard, an attacker, aimed to hack IoT devices connected to a target network. In this process, Richard recorded the frequency required to share information between connected devices. After obtaining the frequency, he captured the original data when commands were initiated by the connected devices. Once the original data were collected, he used free tools such as URH to segregate the command sequence. Subsequently, he started injecting the segregated command sequence on the same frequency into the IoT network, which repeats the captured signals of the devices. What is the type of attack performed by Richard in the above scenario?
Options
- ACryptanalysis attack
- BReconnaissance attack
- CSide-channel attack
- DReplay attack
Explanation
Richard captured legitimate IoT radio frequency signals and replayed them to impersonate authorized devices, which is the definition of a replay attack.
Common mistakes.
- A. A cryptanalysis attack focuses on breaking encryption algorithms or ciphertext to recover plaintext; Richard did not attempt to decrypt or analyze any cryptographic scheme.
- B. A reconnaissance attack is a passive information-gathering phase used to discover targets and network topology; Richard went beyond reconnaissance by actively injecting captured signals into the network.
- C. A side-channel attack exploits physical implementation information such as power consumption, electromagnetic emissions, or timing data to extract secrets, which is unrelated to capturing and replaying RF command signals.
Concept tested. IoT replay attack using RF signal capture
Topics
Community Discussion
No community discussion yet for this question.