Eavesdropping passively captures network traffic to intercept sensitive data — passwords, session cookies from unencrypted connections. Passive — doesn't modify traffic.
Protection: encrypt everything (TLS, VPN). On shared networks (Wi-Fi), eavesdropping is trivial with Wireshark. Modern switched networks reduced eavesdropping vs. hub networks, but VLANs and physical layer attacks still enable it.