312-50V13 · Question #618
As the chief security officer at SecureMobile, you are overseeing the development of a mobile banking application. You are aware of the potential risks of man-in-the-middle (MitM) attacks where an att
The correct answer is B. It should prevent the app from communicating over a network if it detects a rogue access point.. To protect a mobile banking app from Man-in-the-Middle (MitM) attacks via rogue Wi-Fi hotspots, the app should be designed to detect such threats and cease network communication.
Question
Options
- AIt should require two-factor authentication for user logins.
- BIt should prevent the app from communicating over a network if it detects a rogue access point.
- CIt should prevent the app from connecting to any unencrypted Wi-Fi networks.
- DIt should require users to change their password every 30 days.
How the community answered
(21 responses)- A5% (1)
- B81% (17)
- C10% (2)
- D5% (1)
Why each option
To protect a mobile banking app from Man-in-the-Middle (MitM) attacks via rogue Wi-Fi hotspots, the app should be designed to detect such threats and cease network communication.
Two-factor authentication (2FA) strengthens user login security but does not prevent the interception of data *after* authentication or during subsequent transactions if an MitM attack is active on a compromised network.
A rogue access point mimics a legitimate one to lure users into connecting, allowing an attacker to intercept traffic for MitM attacks. Implementing a security feature that detects anomalies indicative of a rogue access point (e.g., duplicate SSIDs, weak encryption on an otherwise trusted network, or certificate pinning failures) and subsequently prevents the app from communicating can effectively mitigate the risk of data interception over untrusted networks.
While preventing connection to unencrypted Wi-Fi networks is a good security practice, rogue access points can often mimic encrypted networks and still perform MitM attacks once connected, making this measure insufficient alone.
Requiring regular password changes improves credential hygiene but does not address the underlying threat of network-level interception by a rogue access point.
Concept tested: Mobile app security (MitM prevention, rogue AP detection)
Source: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/ios-mobile-threat-defense?view=o365-worldwide
Topics
Community Discussion
No community discussion yet for this question.