CompTIA Security+ (SY0-701) — Question 266

A user, who is waiting for a flight at an airport, logs in to the airline website using the public Wi-Fi, ignores a security warning and purchases an upgraded seat. When the flight lands, the user finds unauthorized credit card charges. Which of the following attacks most likely occurred?

Answer options

• A. Replay attack
• B. Memory leak
• C. Buffer overflow attack
• D. On-path attack

Correct answer: D

Explanation

The most likely attack in this scenario is an On-path attack, where an attacker intercepts the communication between the user and the airline website, potentially capturing sensitive information like credit card details. The other options, such as Replay attack, Memory leak, and Buffer overflow attack, do not directly relate to the interception of data over a public network in this context.