Multiple Choice
A user recently entered a username and password into a recruiting application website that had been forged to look like the legitimate site. Upon investigation, a security analyst identifies the following: The legitimate website's IP address is 10.1.1.20 and eRecruit.local resolves to this IP. The forged website's IP address appears to be 10.2.12.99, based on NetFlow records. All three of the organization's DNS servers show the website correctly resolves to the legitimate IP. DNS query logs show one of the three DNS servers returned a result of 10.2.12.99 (cached) at the approximate time of the suspected compromise. Which of the following MOST likely occurred?
A) A reverse proxy was used to redirect network traffic.
B) An SSL strip MITM attack was performed.
C) An attacker temporarily poisoned a name server.
D) An ARP poisoning attack was successfully executed.
Correct Answer:
Verified
Correct Answer:
Verified
Q89: A security analyst is running a vulnerability
Q90: Which of the following refers to applications
Q91: A website developer is working on a
Q92: A startup company is using multiple SaaS
Q93: A recently discovered zero-day exploit utilizes an
Q95: A company recently experienced a data breach
Q96: A company processes highly sensitive data and
Q97: A user reports constant lag and performance
Q98: A cybersecurity administrator has a reduced team
Q99: Which of the following is a team