What is the attack method where hackers use a list of common passwords to break into systems? Learn how dictionary attacks work, their risks, and how to defend against them—key knowledge for the Cisco Certified Support Technician (CCST) Cybersecurity 100-160 exam.
Table of Contents
Question
A hacker attempts to gain access to a system by using a list of common passwords. What is this attack method called?
A. Brute force attack
B. Credential stuffing
C. Keylogging
D. Dictionary attack
E. Man-in-the-middle attack
Answer
D. Dictionary attack
Explanation
A dictionary attack involves using a predefined list of common passwords to gain access.
The attack method where a hacker attempts to gain access to a system by using a list of common passwords is called a dictionary attack.
A dictionary attack involves systematically trying every word or phrase from a predefined list—often derived from dictionaries, leaked password databases, or common password lists—to guess a user's password and gain unauthorized access.
Unlike brute-force attacks, which try all possible character combinations, dictionary attacks focus on likely passwords, making them faster and more efficient against weak or commonly used passwords.
Attackers may enhance dictionary attacks by adding variations, such as appending numbers or substituting letters with similar-looking numbers or symbols.
Dictionary attacks exploit the tendency of users to choose simple, predictable passwords, which is why strong password policies and multi-factor authentication are recommended defenses.
A dictionary attack uses a predefined list of common passwords to systematically attempt to gain unauthorized access to a system.
Cisco Certified Support Technician (CCST) Cybersecurity 100-160 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Cisco Certified Support Technician (CCST) Cybersecurity 100-160 exam and earn Cisco Certified Support Technician (CCST) Cybersecurity 100-160 certification.