EC-COUNCIL EC-COUNCIL Certifications 312-50V12 Questions & Answers

• Question 581:

  There have been concerns in your network that the wireless network component is not sufficiently secure. You perform a vulnerability scan of the wireless network and find that it is using an old encryption protocol that was designed to mimic wired encryption, what encryption protocol is being used?

  A. WEP

  B. RADIUS

  C. WPA

  D. WPA3

  Correct Answer: A

  Wired Equivalent Privacy (WEP) may be a security protocol, laid out in the IEEE wireless local area network (Wi-Fi) standard, 802.11b, that's designed to supply a wireless local area network (WLAN) with A level of security and privacy like what's usually expected of a wired LAN. A wired local area network (LAN) is usually protected by physical security mechanisms (controlled access to a building, for example) that are effective for a controlled physical environment, but could also be ineffective for WLANs because radio waves aren't necessarily bound by the walls containing the network. WEP seeks to determine similar protection thereto offered by the wired network's physical security measures by encrypting data transmitted over the WLAN. encoding protects the vulnerable wireless link between clients and access points; once this measure has been taken, other typical LAN security mechanisms like password protection, end-to-end encryption, virtual private networks (VPNs), and authentication are often put in situ to make sure privacy.A research group from the University of California at Berkeley recently published a report citing "major security flaws" in WEP that left WLANs using the protocol susceptible to attacks (called wireless equivalent privacy attacks). within the course of the group's examination of the technology, they were ready to intercept and modify transmissions and gain access to restricted networks. The Wireless Ethernet Compatibility Alliance (WECA) claims that WEP ?which is included in many networking products ?was never intended to be the only security mechanism for a WLAN, and that, in conjunction with traditional security practices, it's very effective.

• Question 582:

  Bob, your senior colleague, has sent you a mail regarding a deal with one of the clients. You are requested to accept the offer and you oblige. After 2 days, Bab denies that he had ever sent a mail. What do you want to "know"to prove yourself that it was Bob who had send the mail?

  A. Non-Repudiation

  B. Integrity

  C. Authentication

  D. Confidentiality

  Correct Answer: A

  Non-repudiation is the assurance that someone cannot deny the validity of something. Non-repudiation is a legal concept that is widely used in information security and refers to a service, which provides proof of the origin of data and the integrity of the data. In other words, non-repudiation makes it very difficult to successfully deny who/where a message came from as well as the authenticity and integrity of that message.

• Question 583:

  John, a disgruntled ex-employee of an organization, contacted a professional hacker to exploit the organization. In the attack process, the professional hacker installed a scanner on a machine belonging to one of the victims and scanned several machines on the same network to identify vulnerabilities for further exploitation. What is the type of vulnerability assessment tool employed by John in the above scenario?

  A. Proxy scanner

  B. Agent-based scanner

  C. Network-based scanner

  D. Cluster scanner

  Correct Answer: C

  Network-based scanner

  A network-based vulnerability scanner, in simplistic terms, is the process of identifying loopholes on a computer's network or IT assets, which hackers and threat actors can exploit. By implementing this process, one can successfully identify

  their organization's current risk(s). This is not where the buck stops; one can also verify the effectiveness of your system's security measures while improving internal and external defenses. Through this review, an organization is well

  equipped to take an extensive inventory of all systems, including operating systems, installed software, security patches, hardware, firewalls, anti- virus software, and much more.

  Agent-based scanner

  Agent-based scanners make use of software scanners on each and every device; the results of the scans are reported back to the central server. Such scanners are well equipped to find and report out on a range of vulnerabilities. NOTE:

  This option is not suitable for us, since for it to work, you need to install a special agent on each computer before you start collecting data from them.

• Question 584:

  An attacker identified that a user and an access point are both compatible with WPA2 and WPA3 encryption. The attacker installed a rogue access point with only WPA2 compatibility in the vicinity and forced the victim to go through the WPA2 four-way handshake to get connected. After the connection was established, the attacker used automated tools to crack WPA2-encrypted messages. What is the attack performed in the above scenario?

  A. Timing-based attack

  B. Side-channel attack

  C. Downgrade security attack

  D. Cache-based attack

  Correct Answer: B

• Question 585:

  Which of the following statements is TRUE?

  A. Packet Sniffers operate on the Layer 1 of the OSI model.

  B. Packet Sniffers operate on Layer 2 of the OSI model.

  C. Packet Sniffers operate on both Layer 2 and Layer 3 of the OSI model.

  D. Packet Sniffers operate on Layer 3 of the OSI model.

  Correct Answer: B

• Question 586:

  Ralph, a professional hacker, targeted Jane, who had recently bought new systems for her company. After a few days, Ralph contacted Jane while masquerading as a legitimate customer support executive, informing that her systems need to be serviced for proper functioning and that customer support will send a computer technician. Jane promptly replied positively. Ralph entered Jane's company using this opportunity and gathered sensitive information by scanning terminals for passwords, searching for important documents in desks, and rummaging bins. What is the type of attack technique Ralph used on Jane?

  A. Dumpster diving

  B. Eavesdropping

  C. Shoulder surfing

  D. impersonation

  Correct Answer: D

• Question 587:

  Leverox Solutions hired Arnold, a security professional, for the threat intelligence process. Arnold collected information about specific threats against the organization. From this information, he retrieved contextual information about security events and incidents that helped him disclose potential risks and gain insight into attacker methodologies. He collected the information from sources such as humans, social media, and chat rooms as well as from events that resulted in cyberattacks. In this process, he also prepared a report that includes identified malicious activities, recommended courses of action, and warnings for emerging attacks. What is the type of threat intelligence collected by Arnold in the above scenario?

  A. Strategic threat intelligence

  B. Tactical threat intelligence

  C. Operational threat intelligence

  D. Technical threat intelligence

  Correct Answer: C

• Question 588:

  Which tool can be used to silently copy files from USB devices?

  A. USB Grabber

  B. USB Snoopy

  C. USB Sniffer

  D. Use Dumper

  Correct Answer: D

• Question 589:

  Which of the following algorithms can be used to guarantee the integrity of messages being sent, in transit, or stored?

  A. symmetric algorithms

  B. asymmetric algorithms

  C. hashing algorithms

  D. integrity algorithms

  Correct Answer: C

• Question 590:

  Don, a student, came across a gaming app in a third-party app store and Installed it. Subsequently, all the legitimate apps in his smartphone were replaced by deceptive applications that appeared legitimate. He also received many advertisements on his smartphone after Installing the app. What is the attack performed on Don in the above scenario?

  A. SMS phishing attack

  B. SIM card attack

  C. Agent Smith attack

  D. Clickjacking

  Correct Answer: C

  Agent Smith Attack

  Agent Smith attacks are carried out by luring victims into downloading and installing malicious apps designed and published by attackers in the form of games, photo editors, or other attractive tools from third-party app stores such as 9Apps.

  Once the user has installed the app, the core malicious code inside the application infects or replaces the legitimate apps in the victim's mobile device CandC commands. The deceptive application replaces legitimate apps such as WhatsApp,

  SHAREit, and MX Player with similar infected versions. The application sometimes also appears to be an authentic Google product such as Google Updater or Themes.The attacker then produces a massive volume of irrelevant and

  fraudulent advertisements on the victim's device through the infected app for financial gain. Attackers exploit these apps to steal critical information such as personal information, credentials, and bank details, from the victim's mobile device

  through CandC commands.