312-85 Exam QuestionsBrowse all questions from this exam
Go to Exam

312-85 Exam - Question 13

A threat analyst obtains an intelligence related to a threat, where the data is sent in the form of a connection request from a remote host to the server. From this data, he obtains only the IP address of the source and destination but no contextual information. While processing this data, he obtains contextual information stating that multiple connection requests from different geo-locations are received by the server within a short time span, and as a result, the server is stressed and gradually its performance has reduced. He further performed analysis on the information based on the past and present experience and concludes the attack experienced by the client organization.

Which of the following attacks is performed on the client organization?

Show Answer
Correct Answer: C

The attack described in the scenario involves multiple connection requests coming from different geographical locations to a server within a short time span. As a result, the server becomes stressed and its performance gradually reduces. This is characteristic of a Distributed Denial-of-Service (DDoS) attack, where multiple machines (often distributed globally) are used to send a large volume of connection requests to overwhelm the target system, causing a denial of service. DHCP attacks and MAC spoofing attacks are more focused on network behavior and manipulating network resources, whereas a bandwidth attack is a subset of DDoS specifically targeting the network bandwidth, which was not explicitly mentioned in the scenario.

Discussion

3 comments
Sign in to comment
BionicBeaverOption: C
Aug 20, 2023

Answer is C As per Module 01 Page 8 of CTIA Courseware

AnzkOption: C
Aug 3, 2023

answer is c pf 8

sunce12Option: C
Jun 26, 2024

Answer is C As per Module 01 Page 8 of CTIA Courseware