CompTIA Security+ (SY0-501) — Question 473

An employee opens a web browser and types a URL into the address bar. Instead of reaching the requested site, the browser opens a completely different site.
Which of the following types of attacks have MOST likely occurred? (Choose two.)

Answer options

• A. DNS hijacking
• B. Cross-site scripting
• C. Domain hijacking
• D. Man-in-the-browser
• E. Session hijacking

Correct answer: A, E

Explanation

DNS hijacking can redirect users to malicious sites by altering DNS settings, which explains option A. Session hijacking involves stealing session tokens to gain unauthorized access to a user's session, making option E also correct. The other options do not directly relate to the described scenario.