A brute-force attack is a trial-and-error method used to decode encrypted data such as passwords or PINs by systematically trying every possible combination until the correct one is found. This method is resource-intensive and time-consuming, but it is guaranteed to eventually succeed if given enough time and computational power.