During an on-site assessment of a chemical plant, you perform ARP spoofing to place yourself between the HMI and a Modicon PLC. You then craft a Modbus/TCP packet with function code 0x05 (Write Single Coil) that de-energizes the primary feed pump and send it directly to the PLC on TCP port 502. Which type of OT attack does this action exemplify?
Stuxnet-style code-signing bypass using Siemens Step7 protocol
PLC firmware replacement to upload malicious ladder logic
Man-in-the-middle manipulation causing loss-of-view by blocking telemetry responses
Unauthorized command injection that causes denial-of-control over the process
The tester is issuing an unsolicited Modbus/TCP control command that changes the state of a coil on the PLC. Because Modbus has no native authentication or encryption, any host on the same network segment can forge packets that appear to come from the trusted HMI. Injecting a Write Single Coil (0x05) command to turn a device off takes control away from operators and can halt the process. This is classified as an unauthorized command injection that results in a denial-of-control effect.
Blocking telemetry (loss-of-view) would require suppressing or altering replies rather than issuing a control write. Firmware replacement targets the PLC's operating code, not individual I/O points. A Step7 code-signing bypass is specific to Siemens S7 equipment and is unrelated to Modbus command spoofing.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Modbus/TCP and why is it significant for OT security?
Open an interactive chat with Bash
What is ARP spoofing and how does it enable man-in-the-middle attacks?
Open an interactive chat with Bash
How does unauthorized command injection specifically affect OT systems?
Open an interactive chat with Bash
What is ARP spoofing and how does it allow an attacker to intercept communication?
Open an interactive chat with Bash
What is Modbus/TCP and why is it considered insecure?
Open an interactive chat with Bash
Why is the Write Single Coil (function code 0x05) command significant in this attack?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
Mobile Platform, IoT, and OT Hacking
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .