Which type of attack is characterized by intercepting communications to extract sensitive information?

The type of attack characterized by intercepting communications to extract sensitive information is known as a man-in-the-middle attack. In this form of attack, the perpetrator secretly relays and possibly alters the communications between two parties who believe they are directly communicating with each other.

This type of attack can occur in various environments, such as unsecured Wi-Fi networks, where an attacker can eavesdrop on data being transmitted. For example, if a user is accessing a public Wi-Fi hotspot, a man-in-the-middle attacker can capture sensitive information such as login credentials, credit card numbers, and personal messages by positioning themselves between the user and the services they are trying to access.

The effectiveness of this attack stems from the attacker's ability to remain undetected while intercepting the communication, which allows them to harvest sensitive information without the knowledge of the involved parties. Understanding the mechanics of man-in-the-middle attacks is critical for implementing appropriate security measures, such as encryption and secure connections, to protect sensitive data from such interception.