PT0-002 · Question #504
PT0-002 Question #504: Real Exam Question with Answer & Explanation
The correct answer is C: RFID cloning. The penetration tester is most likely performing RFID cloning by electronically capturing the employee's badge information from a short distance.
Question
A penetration tester is conducting a physical test against an organization. During the first day of the assessment, the tester follows an employee to the coffee shop next door. While the employee is ordering, the tester stands near the employee and captures the employee's badge electronically. Which of the following exploits is the penetration tester most likely conducting?
Options
- ATailgating
- BBluesnarfing
- CRFID cloning
- DSession hijacking
Explanation
The penetration tester is most likely performing RFID cloning by electronically capturing the employee's badge information from a short distance.
Common mistakes.
- A. Tailgating is physically following an authorized person through a secure entry point without using legitimate credentials, which is a physical access method, not an electronic exploit of a badge.
- B. Bluesnarfing is the unauthorized access to information from a Bluetooth-enabled device, which is not what is described when electronically capturing badge information.
- D. Session hijacking is exploiting a valid computer session to gain unauthorized access to information or services, which is a network-based attack, not a physical badge exploit.
Concept tested. Physical security exploits- RFID cloning
Topics
Community Discussion
No community discussion yet for this question.