Threats & Attack
A social engineering attack that uses fraudulent emails to trick everyday users into giving away sensitive information like passwords or credit card numbers.
Phishing
This specific type of network firewall inspects data at Layer 7 of the OSI model and uses deep packet inspection to analyze the actual contents of the traffic, allowing it to block specific applications (like Skype or Tor) regardless of the port number they try to use.
NGFW (Next Generation Firewall) also except WAF if specifically referencing web application
This low-tech security control consists of sturdy, short vertical posts anchored into the ground, explicitly designed to prevent vehicles from ramming into a building’s entrance or perimeter walls.
Bollards
This four-letter acronym represents a cloud service layer positioned between an enterprise network and a cloud provider to enforce security, data loss prevention, and compliance policies.
CASB (Cloud Access Security Broker)
The exact quantitative risk metric used to calculate the predicted reliability and lifespan of a repairable asset, representing the average time that elapses between one inherent failure and the next.
MTBF(Mean Time Between Failures)
Malicious software that encrypts a user's files and demands a financial payment in exchange for the decryption key.
Ransomware
This secure, automated protocol serves as an extension to DNS, providing cryptographic authentication and data integrity to DNS responses to ensure that users are not redirected to malicious spoofed websites.
DNSSEC (Domain Name System Security Extensions)
A secure physical entry system consisting of two interlocking doors where the first door must close and lock completely before the second door can be opened, preventing tailgating and forced entry.
Access Control Vestibule (Mantrap)
This acronym refers to a security platform that aggregates log data from across an entire enterprise, correlates the events to detect anomalies, and issues real-time alerts to SOC analysts.
SIEM (Security Information and Event Management)
A policy that defines what actions employees may and may not perform while using corporate computers, networks, and internet resources.
AUP( Acceptable Use Policy)
An attack where a hacker positions themselves between a user and a website to secretly intercept, log, and alter the data traveling between them.
On-Path (Man in the Middle)
A network security control that evaluates a device’s security posture (such as checking for an updated antivirus) before allowing it to join the network.
NAC (Network Access Control)
This data destruction technique uses a powerful magnetic field to completely disrupt and neutralize the magnetic domains on a hard disk drive (HDD) or tape media, rendering the drive completely blank and permanently unusable.
Degaussing
This acronym defines a system that goes beyond log collection by integrating disparate security tools to automate incident response workflows via programmable "playbooks."
SOAR (Security Orchestration, Automation, Response)
A critical business continuity metric that defines the maximum acceptable amount of data loss an organization can tolerate, measured in time (e.g., 4 hours of lost data).
RPO (Recovery Point Objective)
This highly sophisticated, state-sponsored threat actor group possesses immense resources and patience, typically targeting critical infrastructure or government entities over long periods without being detected.
APT (Advanced Persistent Threat)
This sophisticated infrastructure control utilizes centralized cryptographic controllers to dynamic-route traffic based on network application status, automatically applying encrypted tunnels and access control policies across multiple physical branch offices over any transport medium.
SD-WAN (Software-Defined Wide Area Network)
A specialized physical security enclosure made of conductive mesh material designed to completely block external electromagnetic signals, radio frequencies, and cellular transmissions from reaching the devices stored inside.
Faraday Cage
This specific acronym represents the mathematical metric used in quantitative risk assessment to define the total expected financial loss for a single asset over the course of an entire year.
ALE (Annualized Loss Expectancy) ALE=SLE X ARO
The type of risk response used when an organization decides that the cost of mitigating a risk outweighs its potential damage, electing to take no action and handle any consequences if they happen.
Risk Acceptance
A specific type of application attack where an attacker inputs a string like ' OR '1'='1 into a web form field to bypass authentication and manipulate a backend relational database.
SQL Injection (SQLi)
This specific component of an IPsec VPN architecture handles the encryption, authentication, and integrity of the data payloads traveling through the tunnel, but does not natively provide encapsulation for the IP header itself unless run in tunnel mode.
ESP (Encapsulating Security Payload)
This security practice adds random data to a plaintext password before it is run through a hashing algorithm, ensuring that two users with identical passwords will end up with completely different hash values, rendering pre-computed rainbow tables useless.
Salting
An architectural framework acronym that integrates software-defined wide area networking (SD-WAN) with cloud-native security functions like CASB, SWG, and Zero Trust into a single, unified cloud-delivered service.
SASE (Secure Access Service Edge)
This legal regulation focuses strictly on protecting the data privacy of European Union citizens and penalizes international companies that suffer negligent data breaches.
GDPR (General Data Protection Regulation)