Glossary Terms from Module 2-01 Flashcards
Adversarial Artificial Intelligence (AI)
A technique that manipulates artificial intelligence (AI) and machine learning (ML) technology to conduct attacks more efficiently
Business Email Compromise (BEC)
A type of phishing attack where a threat actor impersonates a known source to obtain financial advantage
CISSP
Certified Information Systems Security Professional is a globally recognized and highly sought-after information security certification, awarded by the International Information Systems Security Certification Consortium
Computer Virus
Malicious code written to interfere with computer operations and cause damage to data and software
Cryptographic Attack
An attack that affects secure forms of communication between a sender and intended recipient
Hacker
Any person who uses computers to gain access to computer systems, networks, or data
Malware
Software designed to harm devices or networks
Password Attack
An attempt to access password secured devices, systems, networks, or data
Phishing
The use of digital communications to trick people into revealing sensitive data or deploying malicious software
Physical Attack
A security incident that affects not only digital but also physical environments where the incident is deployed
Physical Social Engineering
An attack in which a threat actor impersonates an employee, customer, or vendor to obtain unauthorized access to a physical location
Social Engineering
A manipulation technique that exploits human error to gain private information, access, or valuables
Social Media Phishing
A type of attack where a threat actor collects detailed information about their target on social media sites before initiating the attack
Spear Phishing
A malicious email attack targeting a specific user or group of users, appearing to originate from a trusted source
Supply-Chain Attack
An attack that targets systems, applications, hardware, and/or software to locate a vulnerability where malware can be deployed