mfa does not prevent phishing. I've seen phishing attacks where people managed to get them to send the code from the mfa device.
Basically one way is they send a marketing with a reply to unsubscribe, having already obtained the password, when someones texts stop or whatever they log in, and say please tell us the six digit code just messaged to your phone in order to unsubscribe.
It helps prevent as the above is quite uncommon but it doesn't prevent it.
I'd classify that as a MitM attack (the bad actor is relaying between Authentication Service and the victim) where a general Phishing attack would be used to gather the password in the first place (cast a line with bait and see who bites).
In this context, the MFA would prevent the phishing attack from being successful, user pops in the username/password, but without the OTP, bad actor can't log in. It doesn't stop them from further social engineering to get the OTP as you describe, but it does prevent a credential harvesting attack from being successful.
A, B and C are correct, but it matters what Cisco wants.
From Cisco website (about Trust Center): MFA protects against phishing, social engineering and password brute- force attacks and secures your logins from attackers exploiting weak or stolen credentials.
So it's simple for me, correct is A & B.
https://duo.com/product/multi-factor-authentication-mfa/two-factor-authentication-2fa
2FA protects against phishing, social engineering and password brute-force attacks and secures your logins from attackers exploiting weak or stolen credentials.
so A and B
MFA protects against phishing, social engineering and password brute-force attacks and secures your logins from attackers exploiting weak or stolen credentials.
A teardrop attack is a denial-of-service (DoS) attack that involves sending fragmented packets to a target machine. Since the machine receiving such packets cannot reassemble them due to a bug in TCP/IP fragmentation reassembly, the packets overlap one another, crashing the target network device. This generally happens on older operating systems such as Windows 3.1x, Windows 95, Windows NT and versions of the Linux kernel prior to 2.1.63.
Phishing is correct because here it means that even if someone phished your password MFA won't allow threat actors to exploit your passwords as 2nd step of authentication will prevent login.
Phishing attempts to get logon credentials just a brute force attempts to use credentials; multi-factor authentication means you need an additional factor (biometric / RSA token, etc.) to log in. Man-in-the-middle attacks can see the extra factor so it will not be mitigated by MFA (multi factor authentication). DDoS and Tear Drop are denial of services, again not affected by MFA.
So if you are not sure what is the answer check this PDF from Cisco.
https://www.cisco.com/c/dam/en_us/about/doing_business/trust-center/docs/cisco-top-10-cyber-tips.pdf
Answer is A and B.
MFA protects against phishing, social engineering and password bruteforce attacks and secures your logins from attackers exploiting weak or
stolen credentials.
This section is not available anymore. Please use the main Exam Page.350-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
crh23
Highly Voted 4 years, 3 months agoBenkelly18
Highly Voted 4 years, 2 months agobigdadzzz
3 years, 10 months agoklu16
3 years, 2 months agoMarshpillowz
Most Recent 6 months, 3 weeks agoRododendron2
7 months agosull3y
1 year, 9 months agosis_net_sec
2 years, 3 months agonomanlands
2 years, 3 months agoCyril_the_Squirl
2 years, 3 months agophilip8787
2 years, 5 months agoIron21
2 years, 5 months agobrownbear505
2 years, 8 months agoWang87
2 years, 9 months agojaciro11
2 years, 11 months agopfunkylol
2 years, 11 months agoheamgu
3 years agoHormore
3 years agoSirFrates24
3 years, 3 months ago