Certified Network Defender (CND) — Question 74
Which of the following refers to the exploitation of a valid computer session to gain unauthorized access to information or services in a computer system?
Answer options
- A. Spoofing
- B. Smurf
- C. Session hijacking
- D. Phishing
Correct answer: C
Explanation
The correct answer is C, Session hijacking, which specifically refers to taking over a valid user session to gain unauthorized access. Options A (Spoofing) and D (Phishing) involve deceiving users or systems but do not specifically describe session takeover, while option B (Smurf) refers to a type of DDoS attack and is unrelated to session exploitation.