Certified Ethical Hacker (CEH v11) — Question 92

Steven connected his iPhone to a public computer that had been infected by Clark, an attacker. After establishing the connection with the public computer, Steven enabled iTunes Wi-Fi sync on the computer so that the device could continue communication with that computer even after being physically disconnected. Now,
Clark gains access to Steven's iPhone through the infected computer and is able to monitor and read all of Steven's activity on the iPhone, even after the device is out of the communication zone.
Which of the following attacks is performed by Clark in the above scenario?

Answer options

• A. Man-in-the-disk attack
• B. iOS jailbreaking
• C. iOS trustjacking
• D. Exploiting SS7 vulnerability

Correct answer: C

Explanation

The correct answer is C, iOS trustjacking, which refers to an attacker gaining unauthorized access to an iOS device by exploiting the trust relationship established between the device and a compromised computer. The other options do not apply here; for instance, A involves malware on external storage, B is about bypassing system restrictions, and D pertains to telecom vulnerabilities, none of which describe the scenario accurately.