Which type of attack involves redirecting users from a legitimate site to a fraudulent one?

The type of attack that involves redirecting users from a legitimate site to a fraudulent one is a Man-in-the-Middle (MitM) attack. This type of attack occurs when an adversary intercepts the communication between two parties. By doing so, the attacker can manipulate the information being sent, which may include redirecting users to fake websites that resemble the legitimate ones. The goal of the attacker often is to capture sensitive information such as login credentials or financial data by deceiving the users into believing they are on a secure and trusted site when, in fact, they are being led to a malicious one.

MitM attacks can utilize various tactics, including intercepting network traffic over unsecured Wi-Fi networks or employing malware to modify the user's session. This method exploits the user's trust in legitimate sites, and the outcome can have serious repercussions, such as identity theft or financial loss.

In contrast, other types of attacks listed involve different mechanisms; for instance, phishing attacks directly solicit users through emails or messages to reveal sensitive information, while denial-of-service (DoS) attacks focus on overwhelming a service to make it unavailable, and SQL injection involves exploiting vulnerabilities in a database layer rather than redirecting users.