Security Definitions
Core security concepts including ransomware, social engineering, data breaches, zero-day exploits, DNS hijacking, and API security.
How to prevent ransomware
Preventing ransomware requires a multi-layered security approach that combines reliable backups, endpoint protection, network segmentation, user training, and incident response planning.
What is a data breach?
A data breach is a security incident in which sensitive, protected, or confidential information is accessed, disclosed, or stolen by an unauthorized party.
What is a KRACK attack?
A KRACK (Key Reinstallation Attack) is a vulnerability in the WPA2 WiFi security protocol that allows attackers to intercept and decrypt wireless network traffic by manipulating the four-way handshake process.
What is an on-path attack?
An on-path attack, traditionally known as a man-in-the-middle attack, occurs when an attacker secretly positions themselves between two communicating parties to intercept, read, and potentially alter the data being exchanged.
What is API Security?
API security refers to the practices and technologies used to protect application programming interfaces from attacks, misuse, and unauthorized access to the data and services they expose.
What is a social engineering attack?
A social engineering attack is a manipulation technique that exploits human psychology to trick people into divulging confidential information, granting unauthorized access, or performing actions that compromise security.
What is a supply chain attack?
A supply chain attack targets the less-secure elements in a software or hardware supply chain to compromise a final product or service, often by injecting malicious code into trusted components or updates.
What is a zero-day exploit?
A zero-day exploit is an attack that targets a previously unknown software vulnerability for which no patch or fix exists, giving defenders zero days to prepare or respond.
What is BGP hijacking?
BGP hijacking is an attack on the internet's routing infrastructure in which an attacker maliciously announces ownership of IP address blocks they do not control, redirecting internet traffic through their network.
What is buffer overflow?
A buffer overflow is a software vulnerability that occurs when a program writes more data to a buffer than it can hold, potentially allowing attackers to overwrite adjacent memory and execute arbitrary code.