SY0-701 · Question #1074
SY0-701 Question #1074: Real Exam Question with Answer & Explanation
The correct answer is B: Credential replay. The repeated use of the same username and password across multiple login attempts from different IP addresses indicates stolen credentials are being reused to gain unauthorized access, which is characteristic of a credential replay attack.
Question
A network security analyst monitors the network's IDS. which has flagged unusual activity. The IDS has detected multiple login attempts to a database server within a short period. These attempts come from various IP addresses that are not normally recognized by the network's usual traffic patterns. Each attempt uses the same username and password. Based on the following log output: Which of the following types of network attacks is most likely occurring?
Options
- ACross-site scripting
- BCredential replay
- CDistributed denial of service
- DSQL injection
Explanation
The repeated use of the same username and password across multiple login attempts from different IP addresses indicates stolen credentials are being reused to gain unauthorized access, which is characteristic of a credential replay attack.
Community Discussion
No community discussion yet for this question.