a potential threat that a hacker creates

a weakness that makes a target susceptible to an attack

a method of attack to exploit a target

a known target or victim machine

a computer that contains sensitive information

It is a piggy-back attack.

It is a hoax.

It is an impersonation attack.

It is a DDoS attack.

Do not provide password resets in a chat window.

Deploy well-designed firewall appliances.

Enable a policy that states that the IT department should supply information over the phone only to managers.

Educate employees regarding policies.

Resist the urge to click on enticing web links.

SQL injection

DoS

packet Injection

man-in-the-middle

improper access control

hard copy

an internal threat

unencrypted devices

A weakness in a system or its design that could be exploited by a threat.

The actions that are taken to protect assets by mitigating a threat or reducing risk.

The potential damage to the organization that is caused by the threat.

The likelihood that a particular threat will exploit a vulnerability of an asset and result in an undesirable consequence.

passwords

end user license agreement (EULA)

shredding

encryption