Digital Forensic Certification Practice Exam

Which attack method leverages unauthorized access to a system to capture data through exposure of unencrypted networks?

• A. Spear Phishing
• B. Brute Force Attack
• C. Ad-hoc Connection Attack
• D. Credential Stuffing

The correct answer is: Ad-hoc Connection Attack

The attack method that leverages unauthorized access to a system to capture data through exposure of unencrypted networks is indeed the ad-hoc connection attack. This type of attack typically involves an attacker connecting to a network without authorization, often taking advantage of vulnerabilities in wireless networks that do not employ adequate encryption protocols. In ad-hoc networks, devices can communicate directly without a centralized network infrastructure, which can lead to situations where an attacker gains access to sensitive data traffic. If the network traffic is not encrypted, the attacker can intercept and capture sensitive information such as usernames, passwords, and other confidential data as it is transmitted over the network. Other methods, such as those listed, have different operational mechanics. For instance, spear phishing primarily relies on social engineering to deceive individuals into providing sensitive information rather than exploiting network vulnerabilities directly. A brute-force attack involves attempting numerous combinations to crack passwords, while credential stuffing uses stolen credentials to gain unauthorized access to accounts. However, neither of these is focused specifically on capturing data through unsecured network exposure as the ad-hoc connection attack does. Thus, the unique characteristic of the ad-hoc connection attack makes it the correct answer to this question.