A threat is an incident or an action which is deliberate or unintended that results in disruption, down
time or data loss.
Internal Threat = caused by an incident inside an organisation
External Threat = caused outside the organisation
An attack is a deliberate action, targeting an organisation’s digital system or data.
This refers to someone gaining entry without permission to an organisation’s system, software or
They try to inflict damage by compromising security systems
Do it for fun and not with malicious intent
working with organizations to strengthen the security of a system
MALWARE (AKA Malicious software)
This is an umbrella term given to software that is designed to harm a digital system, damage data or
harvest sensitive information.
Virus (Not a human virus)
A piece of malicious code that attaches to a legitimate program. It is
capable of reproducing itself and usually capable of causing great
harm to files or other programs on the same computer.
A self-contained program that is capable
of spreading on it's own without human
help. Worms get around by exploiting
vulnerabilities in operating systems and
attaching themselves to emails. They self
replicate at a tremendous rate, using up
hard drive space and bandwidth,
It is a type of Malware that is hidden in legitimate sotware.
Is a set of tools that give a hacker a high level administrative control, of a computer.
Encrypts files stored on a computer to extort or steal money from organisations. Victims must then
pay a ransom to have the encrypted files unlocked. There is normally a deadline for the transaction to
Is a malicious software secretly installed to collect information from someone else's computer
spyware that records every keystroke made on a computer to steal personal information