🛡️ Free practice test question from: threat vectors (Security+)

The key characteristics that should lead to a correct answer: DNS server poisoning (DNS-based pharming attack)

→ Employees are redirected to a fake login page that looks legitimate

→ The issue occurs only within the internal network

→ No malware is detected on individual employee devices

→ The redirection happens when entering the correct URL

Let's briefly review the other answers:
A) Phishing attack via email links - This doesn't explain the network-specific redirection.

C) Malware-based hosts file alteration - The IT team confirmed no malware on devices.

D) SSL stripping attack - Unlike DNS pharming, which redirects users to a completely different IP address, SSL stripping attempts to compromise the security of the existing connection without fully changing the destination.