CompTIA Exam PT0-002 Topic 4 Question 63 Discussion

Actual exam question for CompTIA's PT0-002 exam

Question #: 63
Topic #: 4

[All PT0-002 Questions]

Which of the following situations would MOST likely warrant revalidation of a previous security assessment?

AAfter detection of a breach

BAfter a merger or an acquisition

CWhen an organization updates its network firewall configurations

DWhen most of the vulnerabilities have been remediated

Show Suggested Answer

Suggested Answer: C

* Deauthentication attacks can force legitimate users to disconnect from a wireless network, prompting them to reconnect and, in the process, capture valid user credentials using a rogue access point or network monitoring tools.

* Details:

A . Wardriving: Involves driving around to discover wireless networks; it does not directly gather user credentials.

B . Captive portal: Requires users to log in but is not an attack method; it is a legitimate method to control network access.

C . Deauthentication: Forces users to reauthenticate, allowing an attacker to capture credentials during the reconnection process.

D . Impersonation: Involves pretending to be someone else to gain access but is less effective for directly capturing user credentials compared to deauthentication.

* Reference: Deauthentication attacks are well-documented in wireless security assessments and penetration testing guides.

by Lavera at Aug 04, 2024, 02:56 AM

Limited Time Offer

25%

Off

Get Premium PT0-002 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Elina

4 days ago

I think the answer is A) After detection of a breach.

upvoted 0 times

...