The SecOps Group Exam CNSP Topic 8 Question 3 Discussion

Actual exam question for The SecOps Group's CNSP exam

Question #: 3
Topic #: 8

[All CNSP Questions]

You are performing a security audit on a company's infrastructure and have discovered that the domain name system (DNS) server is vulnerable to a DNS cache poisoning attack. What is the primary security risk?

AThe primary risk is that an attacker could redirect traffic to a malicious website and steal sensitive information.

BThe primary risk is that an attacker could manipulate the cache of the web server or proxy server to return incorrect content for a specific URL or web page.

Show Suggested Answer

Suggested Answer: A

DNS cache poisoning, also known as DNS spoofing, involves an attacker injecting false DNS records into a resolver's cache, altering how domain names resolve.

Why A is correct: The primary risk is that an attacker can redirect users to malicious websites (e.g., phishing or malware sites) by poisoning the DNS cache with fake IP addresses. This can lead to credential theft, data exfiltration, or malware distribution. CNSP identifies this as the core threat of DNS cache poisoning, aligning with real-world attack vectors.

Why other option is incorrect:

B . Manipulate the cache of the web server or proxy server: This describes web cache poisoning, a different attack targeting HTTP caches, not DNS servers. DNS cache poisoning affects DNS resolution, not web or proxy server caches directly.

by Laticia at Mar 23, 2025, 06:33 AM

Limited Time Offer

25%

Off

Get Premium CNSP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Fairy

7 days ago

Definitely option A. Redirecting traffic to a malicious site is the biggest risk here. That could lead to some serious data breaches and identity theft.

upvoted 0 times

...