This type of attack tricks users into clicking malicious links via email.
What is phishing?
This adds a second verification step beyond a password.
What is multi-factor authentication (MFA)?
Software designed to harm or exploit systems.
What is malware?
Sensitive customer data like SSNs and policy data falls into this category.
What is personally identifiable information (PII)?
A device or software that filters network traffic.
What is a firewall?
A targeted phishing attack aimed at a specific individual or company.
What is spear phishing?
A password attack that tries every possible combination.
What is a brute force attack?
Malware that locks files and demands payment.
What is ransomware?
Protecting data by converting it into unreadable code.
What is encryption?
Software that detects and removes malicious programs.
What is antivirus?
Attackers impersonate executives to request urgent wire transfers or sensitive data.
What is business email compromise (BEC)?
This type of password is long, complex, and unique—recommended for all systems.
What is a strong password?
Malware disguised as legitimate software.
What is a Trojan?
A breach exposing policyholder data could lead to this type of insurance claim.
What is a cyber liability claim?
A secure connection method for remote workers.
What is a VPN?
This social engineering method uses phone calls pretending to be IT support.
What is vishing?
Reusing passwords across systems increases risk of this type of attack.
What is credential stuffing?
This spreads across networks without user interaction.
What is a worm?
Limiting data access based on job role is called this.
What is role-based access control (RBAC)?
Simulated cyberattacks used to test defenses.
What is penetration testing?
Attackers gather personal info from social media to craft convincing attacks.
What is pretexting?
Authentication using something you are, like a fingerprint or face scan.
What is biometric authentication?
Malware that secretly records keystrokes.
What is a keylogger?
Insurance companies must comply with regulations like this one protecting financial data.
What is GLBA (Gramm-Leach-Bliley Act)?
Monitoring systems for suspicious behavior in real time.
What is intrusion detection (IDS)?