ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-601 All Questions

View all questions & answers for the SY0-601 exam
Go to Exam

Exam SY0-601 topic 1 question 651 discussion

Actual exam question from CompTIA's SY0-601
Question #: 651
Topic #: 1
[All SY0-601 Questions]

A security engineer is reviewing log files after a third party discovered usernames and passwords for the organization's accounts. The engineer sees there was a change in the IP address for a vendor website one week earlier. This change lasted eight hours. Which of the following attacks was MOST likely used?

  • A. Man-in-the-middle
  • B. Spear-phishing
  • C. Evil twin
  • D. DNS poisoning
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by sujon_london at Sept. 7, 2023, 6:14 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
sujon_london
Highly Voted 1 year, 9 months ago
Selected Answer: D
In DNS poisoning, the attacker changes the DNS records for a legitimate website to point to a malicious website. This can be done by exploiting a vulnerability in the DNS server or by sending a spoofed DNS request. When the victim tries to access the legitimate website, they are redirected to the malicious website instead. The malicious website can then collect the victim's username and password, or it can install malware on the victim's computer. In this case, the change in the IP address for the vendor website is a clue that DNS poisoning was used. The attacker changed the IP address to point to a malicious website, which is where the usernames and passwords were stolen.
upvoted 7 times
...
Nemish71
Most Recent 1 year, 1 month ago
Selected Answer: D
Option elimination always work when you don't know right answer
upvoted 3 times
...
adamer91
1 year, 6 months ago
DNS poisoning is a type of attack where the DNS (Domain Name System) records are manipulated to redirect traffic from legitimate websites to malicious ones. However, the scenario provided mentions a change in the IP address for a vendor website, which suggests that the change was observed at the network layer rather than the DNS layer. ANSWER MITM
upvoted 2 times
...
fryderyk
1 year, 6 months ago
Selected Answer: D
DNS poisoning
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel