350-701 · Question #189
A user has a device in the network that is receiving too many connection requests from multiple machines. Which type of attack is the device undergoing?
The correct answer is A. SYN flood. The device is undergoing a SYN flood attack, which is characterized by an overwhelming number of TCP SYN connection requests from multiple machines.
Question
A user has a device in the network that is receiving too many connection requests from multiple machines. Which type of attack is the device undergoing?
Exhibit
Options
- ASYN flood
- Bslowloris
- Cpharming
- Dphishing
How the community answered
(51 responses)- A76% (39)
- B2% (1)
- C16% (8)
- D6% (3)
Why each option
The device is undergoing a SYN flood attack, which is characterized by an overwhelming number of TCP SYN connection requests from multiple machines.
A SYN flood is a type of Denial of Service (DoS) attack where an attacker sends a high volume of TCP SYN packets to a target server, initiating numerous half-open connections. This rapid consumption of server resources, such as connection tables, prevents legitimate users from establishing connections and causes the device to receive too many requests.
Slowloris is a different type of DoS attack that uses minimal bandwidth by keeping a few connections open for as long as possible, rather than sending an excessive number of new connection requests simultaneously.
Pharming is a cyberattack that redirects users from legitimate websites to malicious ones without their knowledge, primarily by manipulating DNS resolution, and does not involve overwhelming a device with connection requests.
Phishing is a social engineering attack that attempts to trick users into revealing sensitive information through deceptive communication, not by flooding a device with connection requests.
Concept tested: TCP SYN flood attack characteristics
Source: https://learn.microsoft.com/en-us/azure/ddos-protection/ddos-protection-overview#syn-flood-attack
Topics
Community Discussion
No community discussion yet for this question.
