Question

A home user reports to a network technician that the Internet is slow. The network administrator discovers that multiple unknown devices are connected to the access point. What is MOST likely the cause?
A. A successful WPS attack has occurred (Correct)B. The user is experiencing ARP poisoningC. The user is connected to a botnetD. An evil twin has been implemented

Answer 1

Answer:

The correct answer is option A.

Explanation:

When a successful WPS attack happens it means that the default username and password, among other credentials, have not been changed on the router. It means that if the user hasn't changed the username and the password, anyone with the necessary skills can get into the settings and allow any other user to use the network, which also explains the unknown devices on the network.

Answer 2

Answer:

Option (A) A successful WPS attack has occurred

Explanation:

• WPS stands for Wi-Fi Protected Setup.
• Its a network security protocol in the Wi-Fi which has a vulnerability.
• The connection to the Wi-Fi can be established through the router in four ways. They are
• (a) PIN method
• (b) Push button method
• (c) Near field communication method
• (d) USB Method.
• Out of all the modes to be connected to the network, the PIN method has a flaw in it.
• In this PIN method, an attacker can brute force the PIN (guessing the PIN by some techniques) and gain unauthorized access to the network.
• In the given case in the question, the network administrator finds that multiple unauthorized devices has gained access to the network.
• Option (A) is correct.
• Option (B) ARP Poisoning, (C) botnet and (D) Evil Twin attack are different and so are the wrong options.