nerdexam
Exams312-50V9Questions#326
EC-Council

312-50V9 · Question #326

312-50V9 Question #326: Real Exam Question with Answer & Explanation

The correct answer is B: Evil Twin Attack. This question tests knowledge of wireless network attack types, specifically the Evil Twin Attack, which involves creating a fraudulent Wi-Fi access point that mimics a legitimate one to intercept user communications.

Question

........is an attack type for a rogue Wi-Fi access point that appears to be a legitimate one offered on the premises, but actually has been set up to eavesdrop on wireless communications. It is the wireless version of the phishing scam. An attacker fools wireless users into connecting a laptop or mobile phone to a tainted hotspot by posing as a legitimate provider. This type of attack may be used to steal the passwords of unsuspecting users by either snooping the communication link or by phishing, which involves setting up a fraudulent web site and luring people there. Fill in the blank with appropriate choice.

Options

  • ACollision Attack
  • BEvil Twin Attack
  • CSinkhole Attack
  • DSignal Jamming Attack

Explanation

This question tests knowledge of wireless network attack types, specifically the Evil Twin Attack, which involves creating a fraudulent Wi-Fi access point that mimics a legitimate one to intercept user communications.

Approach. An Evil Twin Attack is precisely defined as a rogue wireless access point that impersonates a legitimate hotspot to trick users into connecting to it. Once connected, the attacker can perform man-in-the-middle (MITM) operations - sniffing traffic, capturing credentials, or redirecting users to phishing sites. It is called 'evil twin' because the malicious AP is a near-identical copy (twin) of the real one, often using the same SSID and spoofed BSSID. This matches every detail in the scenario: eavesdropping, posing as a legitimate provider, snooping the link, and phishing via fraudulent websites.

Common mistakes.

  • A. A Collision Attack targets cryptographic hash functions by finding two different inputs that produce the same hash output - it is a cryptanalysis technique unrelated to wireless network impersonation.
  • C. A Sinkhole Attack is common in wireless sensor networks (WSNs) or routing protocols, where a compromised node advertises false routing metrics to attract and intercept traffic at the network layer - not a Wi-Fi hotspot impersonation attack.
  • D. Signal Jamming Attack disrupts wireless communications by broadcasting interference on the same frequency, causing denial-of-service. It does not involve impersonation, eavesdropping, or phishing.

Concept tested. Wireless network attack types - specifically Evil Twin / Rogue Access Point attacks and how they relate to man-in-the-middle and phishing techniques in the context of CompTIA Security+ or similar certification domains.

Reference. CompTIA Security+ SY0-701 Objective 2.4 - Analyze indicators of malicious activity (Wireless attacks: Evil Twin); also covered in CEH and CWSP frameworks.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V9 Practice