Certified Ethical Hacker (CEH v11) — Question 128

Scenario: Joe turns on his home computer to access personal online banking. When he enters the URL www.bank.com, the website is displayed, but it prompts him to re-enter his credentials as if he has never visited the site before. When he examines the website URL closer, he finds that the site is not secure and the web address appears different.
What type of attack he is experiencing?

Answer options

• A. DHCP spoofing
• B. DoS attack
• C. ARP cache poisoning
• D. DNS hijacking

Correct answer: D

Explanation

Joe is likely experiencing a DNS hijacking attack, which redirects his request to a malicious site that looks similar to the legitimate banking site. The other options do not explain the symptom of the URL appearing different and requiring re-authentication, as DHCP spoofing and ARP cache poisoning relate to network-level attacks, while a DoS attack would typically disrupt service rather than redirect traffic.