Active Session Hijacking is described as:

• A. An attacker observes and records session traffic without interfering
• B. An attacker takes over the session by actively participating
• C. The attacker floods the network to degrade performance
• D. The attacker sends a reset to terminate the session

Answer: (B)

Active session hijacking means the attacker takes control of an already established session by actively participating in it, effectively impersonating the legitimate user. The attacker doesn’t just watch; they inject themselves into the session and perform actions under the user’s identity, often by stealing or replaying a session token or credentials or by intercepting the communication in a way that allows them to continue the session as the authenticated user. This distinguishes it from mere eavesdropping, where no actions are taken in the session, and from attempts to disrupt or terminate the session. The other options describe passive monitoring, a denial-of-service action, or a reset attack, none of which involve actually taking over and continuing to act within the active session.