nerdexam
EC-Council

312-50V13 · Question #618

As the chief security officer at SecureMobile, you are overseeing the development of a mobile banking application. You are aware of the potential risks of man-in-the-middle (MitM) attacks where an att

The correct answer is B. It should prevent the app from communicating over a network if it detects a rogue access point.. To protect a mobile banking app from Man-in-the-Middle (MitM) attacks via rogue Wi-Fi hotspots, the app should be designed to detect such threats and cease network communication.

Submitted by emma.c· Mar 6, 2026Hacking Mobile Platforms

Question

As the chief security officer at SecureMobile, you are overseeing the development of a mobile banking application. You are aware of the potential risks of man-in-the-middle (MitM) attacks where an attacker might intercept communication between the app and the bank's servers. Recently, you have learned about a technique used by attackers where they use rogue Wi-Fi hotspots to conduct MitM attacks. To prevent this type of attack, you plan to implement a security feature in the mobile app. What should this feature accomplish?

Options

  • AIt should require two-factor authentication for user logins.
  • BIt should prevent the app from communicating over a network if it detects a rogue access point.
  • CIt should prevent the app from connecting to any unencrypted Wi-Fi networks.
  • DIt should require users to change their password every 30 days.

How the community answered

(21 responses)
  • A
    5% (1)
  • B
    81% (17)
  • C
    10% (2)
  • D
    5% (1)

Why each option

To protect a mobile banking app from Man-in-the-Middle (MitM) attacks via rogue Wi-Fi hotspots, the app should be designed to detect such threats and cease network communication.

AIt should require two-factor authentication for user logins.

Two-factor authentication (2FA) strengthens user login security but does not prevent the interception of data *after* authentication or during subsequent transactions if an MitM attack is active on a compromised network.

BIt should prevent the app from communicating over a network if it detects a rogue access point.Correct

A rogue access point mimics a legitimate one to lure users into connecting, allowing an attacker to intercept traffic for MitM attacks. Implementing a security feature that detects anomalies indicative of a rogue access point (e.g., duplicate SSIDs, weak encryption on an otherwise trusted network, or certificate pinning failures) and subsequently prevents the app from communicating can effectively mitigate the risk of data interception over untrusted networks.

CIt should prevent the app from connecting to any unencrypted Wi-Fi networks.

While preventing connection to unencrypted Wi-Fi networks is a good security practice, rogue access points can often mimic encrypted networks and still perform MitM attacks once connected, making this measure insufficient alone.

DIt should require users to change their password every 30 days.

Requiring regular password changes improves credential hygiene but does not address the underlying threat of network-level interception by a rogue access point.

Concept tested: Mobile app security (MitM prevention, rogue AP detection)

Source: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/ios-mobile-threat-defense?view=o365-worldwide

Topics

#mobile app security#Man-in-the-Middle#rogue Wi-Fi hotspot#network communication

Community Discussion

No community discussion yet for this question.

Full 312-50V13 Practice