1_4_1 Section 1 – Attacks, Threats, and Vulnerabilities - 1.4 – Network Attacks - Rogue Access Points and Evil Twins

Questions and Answers

What is a rogue access point?

• An access point that is officially added to the network after a periodic review
• An access point provided by the company for employees to use
• An access point that an employee adds to the network without authorization (correct)
• An access point used solely for wireless spectrum analysis

Why might an employee introduce a rogue access point?

• To connect personal devices without permission (correct)
• To increase network efficiency
• To comply with company policies
• To enhance corporate network security

What potential harm could a rogue access point cause?

• Allowing unauthorized access to the corporate network (correct)
• Improving wireless spectrum understanding
• Providing secure access to personal devices
• Enhancing network performance

How can a mobile device become a rogue access point?

By enabling wireless sharing features (A)

Why is it essential to conduct periodic reviews of the wireless environment?

To identify and remove any unauthorized rogue access points (A)

What can help understand who is using the frequencies in your wireless environment?

Third-party devices for wireless spectrum analysis (C)

What is the purpose of using network access control mechanisms like 802.1x?

To prevent rogue access points from successfully connecting to the network. (D)

What is a Wi-Fi Pineapple commonly used for in relation to network security?

Setting up rogue access points to test network vulnerabilities. (A)

What makes a wireless evil twin different from a typical rogue access point?

It mimics legitimate access points on the network for malicious purposes. (D)

Why is using encrypted communication important when connected to a public Wi-Fi open network?

To protect the confidentiality of your data from potential attackers. (D)

How does a wireless evil twin overpower other access points on the network?

By positioning itself closer to users and using a similar SSID. (C)

What security measure could prevent an attacker from gaining unauthorized access via a rogue access point?

Using a VPN client for all network communications. (B)

What is a common way a rogue access point can be introduced to a network?

An employee purchasing an access point without authorization and connecting it to the network. (B)

Why is the presence of rogue access points considered a significant security issue?

They provide unauthorized entry points into the corporate network. (B)

What can happen if someone gains access to a wireless access point on the network?

They might ultimately gain access to the corporate network. (C)

How could turning on wireless sharing on a mobile device contribute to the creation of a rogue access point?

It allows the device to act as an access point for other devices. (C)

Why is it recommended to conduct periodic reviews of the wireless environment?

To verify that the visible access points belong to the authorized network. (D)

What makes it easier for someone to create a rogue access point on a network today?

The availability of relatively inexpensive access points. (A)

What is the purpose of a wireless evil twin access point?

To trick users into connecting to a malicious network (B)

How does a wireless evil twin access point become the primary access point on a network?

By overpowering the signal from other access points (B)

Why is it crucial to use network access control mechanisms like 802.1x?

To prevent unauthorized access to the network (A)

What is a common method used by attackers to entice users to connect to a wireless evil twin access point?

Providing a unique SSID name (C)

Why might public Wi-Fi hotspots be more vulnerable to attacks involving wireless evil twins?

Users are less cautious due to the open nature of the networks (D)

What security measure can help ensure secure communication over a public Wi-Fi open network?

Installing a VPN client for encrypted traffic (C)