Cyber Security Basic Terms and Definitions

  • Malware: Malicious software designed to disrupt, damage, or gain unauthorized access to a computer system.
  • Phishing: The practice of sending fraudulent communications that appear to come from a reputable source, usually through email, to steal sensitive data.
  • Firewall: A network security device that monitors and filters incoming and outgoing network traffic based on an organization’s previously established security policies.
  • Encryption: The process of converting information or data into a code, especially to prevent unauthorized access.
  • Multi-Factor Authentication (MFA): A security system that requires more than one method of authentication from independent categories of credentials to verify the user’s identity.
  • Ransomware: A type of malware that threatens to publish the victim’s personal data or perpetually block access to it unless a ransom is paid.
  • Social Engineering: The use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes.
  • Zero Day Attack: An attack that exploits a previously unknown hardware or software vulnerability before a patch or fix is available.
  • Keylogging: A surveillance technology used to record each keystroke made on a computer, often used to steal passwords and sensitive data.
  • Spyware: Software that enables a user to obtain covert information about another’s computer activities by transmitting data covertly from their hard drive.
  • IoT (Internet of Things): A network of physical objects embedded with sensors and software for the purpose of connecting and exchanging data with other devices over the internet.
  • Passphrase: A sequence of words or other text used to control access to a computer system, program, or data, typically longer and more secure than a password.
  • PII (Personally Identifiable Information): Any data that could potentially identify a specific individual, such as name, social security number, or email address.
  • Trojan Horse: A type of malware that misleads users of its true intent by appearing as a legitimate program but performs malicious actions when executed.
  • Worm: A standalone malware computer program that replicates itself in order to spread to other computers, often using a computer network to spread itself without human interaction.