A threat is an incident or an action which is deliberate or unintended that results in disruption, down
time or data loss.
Internal Threat = caused by an incident inside an organisation
External Threat = caused outside the organisation
Attack
An attack is a deliberate action, targeting an organisation’s digital system or data.
Unauthorised Access
This refers to someone gaining entry without permission to an organisation’s system, software or
data.
Hacker
Black Hat
They try to inflict damage by compromising security systems
Grey Hat
Do it for fun and not with malicious intent
White Hat
working with organizations to strengthen the security of a system
MALWARE (AKA Malicious software)
This is an umbrella term given to software that is designed to harm a digital system, damage data or
harvest sensitive information.
Virus (Not a human virus)
A piece of malicious code that attaches to a legitimate program. It is
capable of reproducing itself and usually capable of causing great
harm to files or other programs on the same computer.
Worm
A self-contained program that is capable
of spreading on it's own without human
help. Worms get around by exploiting
vulnerabilities in operating systems and
attaching themselves to emails. They self
replicate at a tremendous rate, using up
hard drive space and bandwidth,
overloading servers.
Trojan
It is a type of Malware that is hidden in legitimate sotware.
Rootkit
Is a set of tools that give a hacker a high level administrative control, of a computer.
Ransomware
Encrypts files stored on a computer to extort or steal money from organisations. Victims must then
pay a ransom to have the encrypted files unlocked. There is normally a deadline for the transaction to
happen.
Spyware
Is a malicious software secretly installed to collect information from someone else's computer
Keyloggers
spyware that records every keystroke made on a computer to steal personal information