Certified Ethical Hacker (CEH v12) — Question 209

As the chief security officer at SecureMobile, you are overseeing the development of a mobile banking application. You are aware of the potential risks of man-in-the-middle (MitM) attacks where an attacker might intercept communication between the app and the bank's servers. Recently, you have learned about a technique used by attackers where they use rogue Wi-Fi hotspots to conduct MitM attacks. To prevent this type of attack, you plan to implement a security feature in the mobile app. What should this feature accomplish?

Answer options

• A. It should require two-factor authentication for user logins.
• B. It should prevent the app from communicating over a network if it detects a rogue access point.
• C. It should prevent the app from connecting to any unencrypted Wi-Fi networks.
• D. It should require users to change their password every 30 days.

Correct answer: C

Explanation

The correct answer, C, is essential because connecting to unencrypted Wi-Fi networks exposes the app to MitM attacks. While two-factor authentication (A) and password changes (D) improve security, they do not specifically address the risk posed by rogue hotspots. Option B, while helpful, does not prevent the fundamental risk of using unencrypted networks.