A technician reports that a SOHO wireless network was compromised by an attacker who brute forced a password to gain access. The attacker was able to modify the DNS settings on the router and spread malware to the entire network. Which of the following configurations would most likely have allowed the attack to take place? (Select two).

Rationale

WPS and Default login configurations most likely allowed the attack to take place.

WPS (Wi-Fi Protected Setup) simplifies the process of connecting devices to a wireless network but can be vulnerable to brute-force attacks. The use of default login credentials on the router also presents a significant security risk, as attackers can easily gain access without needing to crack a unique password.

A (Guest network) YOUR ANSWER

While a guest network can provide limited access for visitors, it does not inherently facilitate a brute-force attack or compromise the main network unless misconfigured. Typically, a guest network is designed to isolate guest devices from the internal network, making it less likely to be the vector for this type of attack.

B (TKIP) YOUR ANSWER

Temporal Key Integrity Protocol (TKIP) was designed to improve security over WEP but is now considered outdated and less secure than more modern protocols. However, while it does provide some level of encryption, it does not directly relate to the brute-forcing of passwords or default logins, which are more critical vulnerabilities in this scenario.

C (WPS) CORRECT

WPS allows easy connection to the network but is known for vulnerabilities that can be exploited through brute-force methods. An attacker could use this to gain access to the network quickly, making it a likely factor in the compromise.

D (Default login) CORRECT

Using default login credentials significantly increases vulnerability, as many attackers know common default usernames and passwords. This allows them to bypass security measures entirely and gain administrative access to the router, facilitating further attacks.

E (WEP) YOUR ANSWER

Wired Equivalent Privacy (WEP) is an outdated encryption method that can be easily hacked. However, its weaknesses do not directly relate to the specific scenario of brute-forcing a password or modifying DNS settings, as the attacker primarily exploited WPS and default login vulnerabilities.

F (AES) YOUR ANSWER

Advanced Encryption Standard (AES) is a strong encryption method that enhances security. The use of AES would likely prevent unauthorized access and is not a configuration that would allow an attacker to compromise the network.

Conclusion

The combination of WPS and default login configurations creates significant vulnerabilities that can be exploited by attackers to gain unauthorized access to a wireless network. Securing these aspects is critical to preventing attacks, such as brute-forcing passwords and modifying router settings, which can lead to widespread malware dissemination across the network. Proper security measures, including disabling WPS and changing default credentials, are essential for safeguarding network integrity.

WPS and Default login configurations most likely allowed the attack to take place.

Related Questions

Related Quizzes

How familiar were you with this question?

Report an Issue

Rate this Practice Test