Skip to main content

What is an Threat?

What is an Threat?


Threat is a potential violation of security. It is the intention to inflict harm.



 What is an Attack?


Attack is defined as any action that violates the security. There are two types of attacks passive and active attacks. 


1)  An "active attack" attempts to alter system resources or affect their operation. Due to these attacks, systems get damaged, and information can be altered.


2)  A "passive attack" attempts to learn or make use of information from the system but does not affect system resources (e.g., wiretapping).


Again here the attack can be carry out by anyone inside the organization or may be outside the organization.  Inside attack is defined as the attack that is initiated inside of the security perimeter in organization. Outside attack is defined as person outside of organization, some unauthorized user.


What is a Vulnerability?


Vulnerability is the weakness or implementation error that leads to the unexpected event compromising the security of the system. Due to this cybercriminals can exploit and gain unauthorized access to system.


What is a Exploit?


Exploit is a piece of software that take advantage of vulnerability to cause unintended behavior to occur in computer software and electronic resources. There are two types of exploits :

 

1)  A "remote exploit" works over a network and exploits the security vulnerability without any prior access to the vulnerable system.


2) A "local exploit" requires prior access to the vulnerable system and usually increases the privileges of the person running the exploit.  


What is a Bug ?


A software bug is an error, flaw or fault in the design, development, or operation of computer software that causes it to produce an incorrect or unexpected result, or to behave in unintended ways. The process of finding and correcting bugs is termed "debugging".

Comments

Post a Comment

Popular posts from this blog

WHAT IS HTTP ?? HOW HTTP WORKS?

What is HTTP? HTTP is a protocol. HTTP stands for Hypertext standard protocol . It is defined as a set of rules used for communicating with servers while transmitting any message from client to server. then, what is HTTPS? HTTPS is a secure version of HTTP. "s" is Secure in HTTPS. In HTTPS the data sent is encrypted, so that people don't see the message transmitted over the network. By using the secured version the data sent or received is completely encrypted and no one can impersonate it. When we access a website, our browser sends requests to the server and then the server gives the response in the form of web pages. webpages consist of images, audio, video, html files, and more. How do we access a website? When we access a website, the browser sends a request to a web server and downloads the responses. You need to tell the browser specifically from where to access the resources, this is where the URLs help. URL is a uniform Resource Locator which gives instructio...
Post a Comment
Read more

What is TCP/IP Model??

What is TCP/IP Model?? TCP stands for Transmission Control protocol/Internet Protocol . It is a communication protocol used to interconnect the devices in the internet. Initially, the Transmission Control Program provided only a common service to its users, not datagram. As experience with the protocol grew, functionality was divided into layers of distinct protocols, allowing users direct access to service.  TCP provides reliable, ordered delivery of  bytes between applications running on hosts communicating via network. TCP is connection oriented means a connection is established between a client and server before data is sent. The server waits for the connection requests from clients before any connection is formed.  TCP/IP has 5 layers  Application Layer : This layer allows the user to interact with the application.  Transport Layer : This layer is responsible for flow control, the data is sent through this layer. Network Layer : This layer is responsible f...
Post a Comment
Read more

Attacks that are happening in our daily lives!!!

Lets see Few more attacks that are happening in our daily lives but are unaware about it . Social engineering is a term we are hearing now a days a  lot. But  what is it?  Social engineering is a technique which is aimed to target a victim to reveal the information or performing some illegitimate tasks for his benefits. It is like psychological manipulation for the performing actions. Lets see few techniques with examples below Phishing refers to a technique of fraudulently obtain the private information. It is an attack to steal your money, by getting to know about the personal information by the person. Example : The e-mail which gets especially in festival times usually contains a link to a fraudulent web page that seems legitimate—with company logos and content—and has a form requesting everything from a home address to an ATM card's PIN or a credit card number. Vishing also known as " voice phishing ", is again the same practice of revealing the information over a ...
Post a Comment
Read more