A threat actor has intercepted security keys that are used to establish communications. Which popular remote exploit was used by the threat actor?

A threat actor has intercepted security keys that are used to establish communications. Which popular remote exploit was used by the threat actor?

• eavesdropping attack
• denial-of-service
• username enumeration
• extraction of security parameters

Explanation: Threat actors frequently attempt to access devices over the internet through communication protocols. Some of the most popular remote exploits are as follows:
Man-In-the-middle attack (MITM) – The threat actor gets between devices in the system and intercepts all of the data being transmitted. This information could simply be collected or modified for a specific purpose and delivered to its original destination.
Eavesdropping attack – When devices are being installed, threat actors can intercept data such as security keys that are used by constrained devices to establish communications once they are up and running.
SQL injection (SQLi) – Threat actors use a flaw in the Structured Query Language (SQL) application that allows them to have access to modify the data or gain administrative privileges.
Routing attack – A threat actor could either place a rogue routing device on the network or modify routing packets to manipulate routers to send all packets to the threat actor chosen destination. The threat actor could then drop specific packets, known as selective forwarding, or drop all packets, known as a sinkhole attack.

Exam with this question: IoT Sec 1.1 Fundamentals: IoT Security Final Exam Answers