Certified Ethical Hacker (CEH v13) — Question 231

Richard, an attacker, aimed to hack IoT devices connected to a target network. In this process, Richard recorded the frequency required to share information between connected devices. After obtaining the frequency, he captured the original data when commands were initiated by the connected devices. Once the original data were collected, he used free tools such as URH to segregate the command sequence. Subsequently, he started injecting the segregated command sequence on the same frequency into the IoT network, which repeats the captured signals of the devices.
What is the type of attack performed by Richard in the above scenario?

Answer options

• A. Cryptanalysis attack
• B. Reconnaissance attack
• C. Side-channel attack
• D. Replay attack

Correct answer: D

Explanation

The correct answer is D, Replay attack, because Richard is capturing and retransmitting valid data signals to the IoT devices, which is the hallmark of a replay attack. Options A, B, and C are incorrect as they refer to different types of attacks: cryptanalysis focuses on breaking encryption, reconnaissance involves gathering information about a target, and side-channel attacks exploit indirect information such as timing or power usage.