A user has plugged in a wireless router from home with default configurations into a network jack at the office.
This is known as:
an evil twin.
an IV attack.
a rogue access point.
an unauthorized entry point.
A rogue access point is a wireless access point that should not be there. In this question, the wireless router
has been connected to the corporate network without authorization. Therefore, it is a rogue access point.
A rogue access point is a wireless access point that has either been installed on a secure company network
without explicit authorization from a local network administrator, or has been created to allow a hacker to
conduct a man-in-the-middle attack. Rogue access points of the first kind can pose a security threat to large
organizations with many employees, because anyone with access to the premises can install (maliciously or
non-maliciously) an inexpensive wireless router that can potentially allow access to a secure network to
unauthorized parties. Rogue access points of the second kind target networks that do not employ mutual
authentication (client-server server-client) and may be used in conjunction with a rogue RADIUS server,
depending on security configuration of the target network.
To prevent the installation of rogue access points, organizations can install wireless intrusion prevention
systems to monitor the radio spectrum for unauthorized access points.