Which technique manipulates DNS resolution to redirect a victim to a fraudulent site?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the Certified Ethical Hacker Version 11 Exam with a comprehensive test featuring flashcards and multiple choice questions, each accompanied by hints and explanations to ensure a thorough understanding. Ace your ethical hacking exam with confidence!

Multiple Choice

Which technique manipulates DNS resolution to redirect a victim to a fraudulent site?

Explanation:
The technique tests the ability to alter how domain names are translated into IP addresses so a user ends up on a malicious site even when they type the correct URL. Pharming works by corrupting the DNS data that maps a domain to an IP address. This can happen if a DNS cache is poisoned at a resolver, if an attacker compromises a router or a DNS server, or if malware changes a victim’s local hosts file to point the legitimate domain to an attacker-controlled IP. The result is that visitors think they are reaching a legitimate site, but they are actually connected to a fraudulent one, often designed to look identical and harvest credentials or install malware. Phishing, in contrast, relies on social engineering to lure users to a fraudulent site by directing them to a fake URL or sending them a link, rather than changing how domain names resolve. Click-jacking involves tricking a user into interacting with content they’re viewing (such as clicking a hidden button), and dumpster diving is about physically retrieving sensitive information from discarded items. Understanding pharming highlights the risk that trust in DNS resolution can be exploited, making it possible to redirect users without any obvious warning in the browser. Defenses include DNSSEC, secure DNS resolvers, keeping router firmware updated, monitoring DNS records, using reputable VPNs or DNS over HTTPS, and educating users to verify site authenticity beyond just the URL.

The technique tests the ability to alter how domain names are translated into IP addresses so a user ends up on a malicious site even when they type the correct URL. Pharming works by corrupting the DNS data that maps a domain to an IP address. This can happen if a DNS cache is poisoned at a resolver, if an attacker compromises a router or a DNS server, or if malware changes a victim’s local hosts file to point the legitimate domain to an attacker-controlled IP. The result is that visitors think they are reaching a legitimate site, but they are actually connected to a fraudulent one, often designed to look identical and harvest credentials or install malware.

Phishing, in contrast, relies on social engineering to lure users to a fraudulent site by directing them to a fake URL or sending them a link, rather than changing how domain names resolve. Click-jacking involves tricking a user into interacting with content they’re viewing (such as clicking a hidden button), and dumpster diving is about physically retrieving sensitive information from discarded items. Understanding pharming highlights the risk that trust in DNS resolution can be exploited, making it possible to redirect users without any obvious warning in the browser. Defenses include DNSSEC, secure DNS resolvers, keeping router firmware updated, monitoring DNS records, using reputable VPNs or DNS over HTTPS, and educating users to verify site authenticity beyond just the URL.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy