GIAC Certified Incident Handler (GCIH) — Question 134

What password attack uses a stolen password breach list?

Answer options

• A. Credential Stuffing
• B. Pass-the-Hash
• C. Dictionary Attack
• D. Man-in-the-Middle

Correct answer: A

Explanation

Credential Stuffing is the correct answer because it involves using stolen credentials from a breach to gain unauthorized access to accounts. The other options, such as Pass-the-Hash and Dictionary Attack, involve different methods of exploiting passwords and do not specifically use breach lists.