What TCP/IP attack redirects users by changing the DNS of a legit site?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Master network security terminology with our comprehensive quiz. Prepare with interactive flashcards and multiple-choice questions. Ace your test!

Multiple Choice

What TCP/IP attack redirects users by changing the DNS of a legit site?

Explanation:
The attack being tested is about corrupting DNS responses so a legitimate site resolves to the wrong IP, guiding users to a fraudulent host. This is DNS poisoning (also known as DNS spoofing). By tampering with DNS data—either in a cache, on an authoritative server, or along the lookup path—the attacker makes a user’s browser think the legitimate domain points to the attacker-controlled address. As a result, even when the user enters the correct URL, they’re redirected to a malicious site, enabling phishing, credential theft, or malware delivery. The other options don’t describe this redirection technique. DNS is the system that translates names to addresses, not an attack itself. Dig is a tool used to query DNS records, not to perform redirection. Direct isn’t a standard term for a DNS-based attack.

The attack being tested is about corrupting DNS responses so a legitimate site resolves to the wrong IP, guiding users to a fraudulent host. This is DNS poisoning (also known as DNS spoofing). By tampering with DNS data—either in a cache, on an authoritative server, or along the lookup path—the attacker makes a user’s browser think the legitimate domain points to the attacker-controlled address. As a result, even when the user enters the correct URL, they’re redirected to a malicious site, enabling phishing, credential theft, or malware delivery.

The other options don’t describe this redirection technique. DNS is the system that translates names to addresses, not an attack itself. Dig is a tool used to query DNS records, not to perform redirection. Direct isn’t a standard term for a DNS-based attack.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy