After viewing wireless traffic, an attacker notices the following networks are being broadcasted by local access
points:
Corpnet
Coffeeshop
FreePublicWifi
Using this information, the attacker spoofs a response to make nearby laptops connect back to a malicious
device. Which of the following has the attacker created?

A.
Infrastructure as a Service

B.
Load balancer

C.
Evil twin

D.
Virtualized network

Explanation:
In this question, the attacker has created another wireless network that is impersonating one of more of the
three wireless networks listed in the question. This is known as an Evil Twin.
An evil twin, in the context of network security, is a rogue or fake wireless access point (WAP) that appears as
a genuine hotspot offered by a legitimate provider.
In an evil twin attack, an eavesdropper or hacker fraudulently creates this rogue hotspot to collect the personal
data of unsuspecting users. Sensitive data can be stolen by spying on a connection or using a phishing
technique.
For example, a hacker using an evil twin exploit may be positioned near an authentic Wi-Fi access point and
discover the service set identifier (SSID) and frequency. The hacker may then send a radio signal using the
exact same frequency and SSID. To end users, the rogue evil twin appears as their legitimate hotspot with the
same name.
In wireless transmissions, evil twins are not a new phenomenon. Historically, they were known as honeypots or
base station clones. With the advancement of wireless technology and the use of wireless devices in public
areas, it is very easy for novice users to set up evil twin exploits.