What is packet sniffing?

How do hackers use packet sniffing?

Hackers will typically use one of two different methods of sniffing to surreptitiously monitor a company’s network. In the case of organizations with infrastructure configured using hubs that connect multiple devices together on a single network, hackers can utilize a sniffer to passively “spy” on all the traffic flowing within the system. Passive sniffing, such as this, is extremely difficult to uncover.

When a much larger network is involved, utilizing numerous connected computers and network switches to direct traffic only to specific devices, passive monitoring simply won’t provide access to all network traffic. In such a case, sniffing won’t be helpful for either legitimate or illegitimate purposes. Hackers will be forced to bypass the constraints created by the network switches. This requires active sniffing, which adds further traffic to the network, and in turn makes it detectable to network security tools.