CSSLP Question #188: Real Exam Question with Answer & Explanation

The correct answer is B: Brute force attack. The most likely cause of user accounts being locked out due to multiple incorrect logon attempts is a brute force attack, where an attacker repeatedly tries different passwords to gain unauthorized access.

Secure Software Concepts

Question

Mark works as a Network Administrator for NetTech Inc. The company has a Windows 2000 domain- based network. Users report that they are unable to log on to the network. Mark finds that accounts are locked out due to multiple incorrect log on attempts. What is the most likely cause of the account lockouts?

Options

ASpoofing
BBrute force attack
CSYN attack
DPING attack

Explanation

The most likely cause of user accounts being locked out due to multiple incorrect logon attempts is a brute force attack, where an attacker repeatedly tries different passwords to gain unauthorized access.

Common mistakes.

A. Spoofing involves impersonating another user or device, but it doesn't inherently lead to multiple incorrect login attempts that cause account lockouts.
C. A SYN attack (SYN flood) is a type of Denial of Service (DoS) attack that overwhelms a server with connection requests, not directly causing user account lockouts.
D. A PING attack (ICMP flood) is another type of Denial of Service (DoS) attack that floods a target with ICMP echo requests, which also does not directly cause user account lockouts.

Concept tested. Brute force attack and account lockouts

Reference. https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/account-lockout-policy

Topics

#Brute force attack#Account lockout#Authentication attacks#Threat identification

Community Discussion

No community discussion yet for this question.

Full CSSLP Practice Browse All CSSLP Questions