CompTIA Security+ (SY0-601) — Question 282

A user reports that a bank’s website no longer displays a padlock symbol. A security analyst views the user's screen and notices the connection is using HTTP instead of HTTPS. Which of the following attacks is most likely occurring?

Answer options

• A. Memory leak
• B. SSL stripping
• C. API
• D. Pass the hash

Correct answer: B

Explanation

The correct answer is B, SSL stripping, which is an attack that downgrades a secure HTTPS connection to an insecure HTTP connection, thereby removing the padlock symbol. The other options, such as memory leak, API, and pass the hash, do not directly relate to the issue of connection security and the absence of the padlock symbol.