Side-channel attacks exploit indirect information leaks from a system, such as timing, power consumption, or electromagnetic emissions, to infer sensitive data. These attacks bypass traditional security mechanisms by leveraging physical or behavioral characteristics of the system rather than exploiting software vulnerabilities.