Scenario: Joe turns on his home computer to access personal online banking. When he enters the URL www.bank.com, the website is displayed, but it prompts him to re-enter his credentials as if he has never visited the site before. When he examines the website URL closer, he finds that the site is not secure and the web address appears different.
What type of attack he is experiencing?
DNS hijacking occurs when an attacker misdirects DNS queries or responses to redirect users to a different, often malicious website. In this scenario, Joe's observation that the URL is different and not secure indicates that he has been redirected to a different site that appears to mimic the legitimate banking site. This redirection is a hallmark of DNS hijacking, as the attacker has altered the DNS response to direct Joe to a fraudulent website.
D. DNS hijacking A. DHCP spoofing: Attacker impersonates DHCP server, obtains client IP addresses and network information, redirects to malicious networks. B. DoS attack: Attacker overwhelms target system, consumes resources, causes service disruption. C. ARP cache poisoning: Attacker sends false ARP responses, redirects target traffic to attacker-controlled location, enables man-in-the-middle attacks. D. DNS hijacking: Attacker modifies DNS queries/responses, redirects users to incorrect/malicious websites, steals sensitive information.
D. DNS hijacking. Explanation: In the given scenario, Joe is experiencing a type of attack known as DNS hijacking. In DNS hijacking, an attacker diverts traffic intended for a legitimate website to a different IP address, which may lead to a fake website designed to look like the original one. The purpose of such an attack is to steal sensitive information, such as login credentials, from unsuspecting users. In this case, the attacker has redirected Joe to a phishing website that mimics the original website, prompting him to enter his credentials.
D. DNS hijacking Like V11 Q205
D. DNS hijacking
D. DNS hijacking
In DNS Hijacking, the attacker modifies DNS queries/responses, redirects users to incorrect/malicious websites, steals sensitive information.