EC-Council Certified Security Analyst (ECSA v10) — Question 18

An attacker targeted to attack network switches of an organization to steal confidential information such as network subscriber information, passwords, etc. He started transmitting data through one switch to another by creating and sending two 802.1Q tags, one for the attacking switch and the other for victim switch. By sending these frames. The attacker is fooling the victim switch into thinking that the frame is intended for it. The target switch then forwards the frame to the victim port.
Identify the type of attack being performed by the attacker?

Answer options

• A. SNMP brute forcing
• B. MAC flooding
• C. IP spoofing
• D. VLAN hopping

Correct answer: D

Explanation

The correct answer is VLAN hopping, which involves an attacker sending frames with multiple VLAN tags to gain access to traffic on a different VLAN. SNMP brute forcing, MAC flooding, and IP spoofing are different types of attacks that do not involve the manipulation of VLAN tagging to intercept data.