A hacker uses a brute force attack to guess passwords.

An attacker sends an email pretending to be a trusted entity to steal sensitive information.

A virus that replicates itself to spread to other computers.

A denial-of-service attack that overwhelms a system with traffic.

Users should have the maximum level of access to perform their tasks.

Users should have access only to the information and resources necessary for their job functions.

All users should have administrative privileges.

Users should share their passwords with their supervisors.

FTP

HTTP

HTTPS

SMTP

To compress data for storage efficiency.

To convert data into a format that is unreadable without a decryption key.

To back up data to a remote server.

To delete sensitive data securely.

Firewall

Antivirus software

Role-Based Access Control (RBAC)

Data encryption

Eradication

Containment

Identification

Recovery

Spyware

Ransomware

Adware

Worm