Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.

Unlimited Access

Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.

Exam 350-701 topic 1 question 14 discussion

Actual exam question from Cisco's 350-701
Question #: 14
Topic #: 1
[All 350-701 Questions]

Which two kinds of attacks are prevented by multifactor authentication? (Choose two.)

  • A. phishing
  • B. brute force
  • C. man-in-the-middle
  • D. DDOS
  • E. tear drop
Show Suggested Answer Hide Answer
Suggested Answer: AB 🗳️

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
crh23
Highly Voted 3 years, 8 months ago
Its A and B cisco document https://www.cisco.com/c/dam/en_us/about/doing_business/trust-center/docs/cisco-mfa-password-security-infographic.pdf
upvoted 28 times
...
Benkelly18
Highly Voted 3 years, 7 months ago
mfa does not prevent phishing. I've seen phishing attacks where people managed to get them to send the code from the mfa device. Basically one way is they send a marketing with a reply to unsubscribe, having already obtained the password, when someones texts stop or whatever they log in, and say please tell us the six digit code just messaged to your phone in order to unsubscribe. It helps prevent as the above is quite uncommon but it doesn't prevent it.
upvoted 9 times
klu16
2 years, 7 months ago
A, B and C are correct, but it matters what Cisco wants. From Cisco website (about Trust Center): MFA protects against phishing, social engineering and password brute- force attacks and secures your logins from attackers exploiting weak or stolen credentials. So it's simple for me, correct is A & B.
upvoted 7 times
...
bigdadzzz
3 years, 3 months ago
I'd classify that as a MitM attack (the bad actor is relaying between Authentication Service and the victim) where a general Phishing attack would be used to gather the password in the first place (cast a line with bait and see who bites). In this context, the MFA would prevent the phishing attack from being successful, user pops in the username/password, but without the OTP, bad actor can't log in. It doesn't stop them from further social engineering to get the OTP as you describe, but it does prevent a credential harvesting attack from being successful.
upvoted 3 times
...
...
Rododendron2
Most Recent 22 hours, 25 minutes ago
How can ever C be wrong ?
upvoted 1 times
...
sull3y
1 year, 2 months ago
A. Phishing B. Brute force
upvoted 2 times
...
sis_net_sec
1 year, 8 months ago
AB is correct
upvoted 1 times
...
nomanlands
1 year, 8 months ago
Selected Answer: AB
Cisco answer is AB. Real life, mainly B and could help with A or C.
upvoted 1 times
...
Cyril_the_Squirl
1 year, 9 months ago
B & C are Correct. https://www.fortinet.com/resources/cyberglossary/man-in-the-middle-attack
upvoted 1 times
...
philip8787
1 year, 10 months ago
https://duo.com/product/multi-factor-authentication-mfa/two-factor-authentication-2fa 2FA protects against phishing, social engineering and password brute-force attacks and secures your logins from attackers exploiting weak or stolen credentials. so A and B
upvoted 1 times
...
Iron21
1 year, 10 months ago
Its A and B
upvoted 1 times
...
brownbear505
2 years, 1 month ago
Selected Answer: AB
MFA protects against phishing, social engineering and password brute-force attacks and secures your logins from attackers exploiting weak or stolen credentials. A teardrop attack is a denial-of-service (DoS) attack that involves sending fragmented packets to a target machine. Since the machine receiving such packets cannot reassemble them due to a bug in TCP/IP fragmentation reassembly, the packets overlap one another, crashing the target network device. This generally happens on older operating systems such as Windows 3.1x, Windows 95, Windows NT and versions of the Linux kernel prior to 2.1.63.
upvoted 2 times
...
Wang87
2 years, 1 month ago
Selected Answer: AB
Phishing is correct because here it means that even if someone phished your password MFA won't allow threat actors to exploit your passwords as 2nd step of authentication will prevent login.
upvoted 2 times
...
jaciro11
2 years, 4 months ago
Selected Answer: AB
Its A and B there is in CISCO documents
upvoted 2 times
...
pfunkylol
2 years, 4 months ago
Selected Answer: AB
Phishing attempts to get logon credentials just a brute force attempts to use credentials; multi-factor authentication means you need an additional factor (biometric / RSA token, etc.) to log in.  Man-in-the-middle attacks can see the extra factor so it will not be mitigated by MFA (multi factor authentication). DDoS and Tear Drop are denial of services, again not affected by MFA.
upvoted 1 times
...
heamgu
2 years, 5 months ago
So if you are not sure what is the answer check this PDF from Cisco. https://www.cisco.com/c/dam/en_us/about/doing_business/trust-center/docs/cisco-top-10-cyber-tips.pdf Answer is A and B.
upvoted 6 times
...
Hormore
2 years, 5 months ago
It’s definitely A&B, MITM is getting the info inbetween the packet conversation… not when user are just trying to authenticate.
upvoted 2 times
...
SirFrates24
2 years, 9 months ago
MFA protects against phishing, social engineering and password bruteforce attacks and secures your logins from attackers exploiting weak or stolen credentials.
upvoted 3 times
...
Raajaa
2 years, 9 months ago
A and B
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...