Certified Ethical Hacker (CEH v12) — Question 60

Richard, an attacker, aimed to hack IoT devices connected to a target network. In this process, Richard recorded the frequency required to share information between connected devices. After obtaining the frequency, he captured the original data when commands were initiated by the connected devices. Once the original data were collected, he used free tools such as URH to segregate the command sequence. Subsequently, he started injecting the segregated command sequence on the same frequency into the IoT network, which repeats the captured signals of the devices.
What is the type of attack performed by Richard in the above scenario?

Answer options

• A. Cryptanalysis attack
• B. Reconnaissance attack
• C. Side-channel attack
• D. Replay attack

Correct answer: D

Explanation

Richard's actions exemplify a Replay attack, where he captures and retransmits valid data to manipulate the system. The other options do not fit: a Cryptanalysis attack involves breaking encryption methods, a Reconnaissance attack focuses on gathering information without directly interacting with the target, and a Side-channel attack exploits physical implementation vulnerabilities rather than replaying data.