Thomas, an employee of an organization, is restricted to access specific websites from his office system. He is trying to obtain admin credentials to remove the restrictions. While waiting for an opportunity, he sniffed communication between the administrator and an application server to retrieve the admin credentials. Identify the type of attack performed by Thomas in the above scenario.
The type of attack Thomas performed is eavesdropping. Eavesdropping involves intercepting and listening to communication or data transmission between parties without their consent. In this scenario, Thomas is sniffing communication between the administrator and an application server to retrieve admin credentials, which fits the definition of eavesdropping as it involves unauthorized interception of data.
Eavesdropping attack is an attack where the attackers position themselves where they can overhear sensitive information.
Eavesdropping
Eavesdropping Eavesdropping refers to an unauthorized person listening to a conversation or reading others’ messages. It includes the interception of any form of communication, including audio, video, or written, using channels such as telephone lines, email, and instant messaging. An attacker can obtain sensitive information such as passwords, business plans, phone numbers, and addresses
Eavesdropping