2.0 Threats, Vulnerabilities, and Mitigations

Software that serves a malicious purpose, typically installed without the user's consent (or knowledge).

A type of software that enhances system performance and security.

An application designed to improve user productivity and efficiency.

A program that helps in managing computer hardware resources.

A type of malware that replicates between processes in system memory and can spread over client/server network connections.

A type of software that helps in managing system resources.

A program that is designed to harm or exploit any programmable device or network.

A tool used for data recovery and backup.

Demanding payment to prevent the release of information.

Offering a reward for information.

Requesting payment for a service rendered.

Threatening to disclose personal secrets for money.

An attack where an attacker registers a domain name with a common misspelling of an existing domain.

A method of phishing that involves sending emails with fake links.

A technique used to improve website SEO by using popular keywords.

A form of malware that infects a user's computer through a web browser.

A highly skilled hacker who creates their own tools.

An inexperienced attacker that typically uses tools or scripts created by others.

A professional security consultant who tests systems for vulnerabilities.

A government agent conducting surveillance on cybercriminals.

A threat actor that causes a vulnerability or exposes an attack vector without malicious intent.

A malicious insider who intentionally leaks sensitive information.

An external hacker attempting to breach a system.

A software bug that creates security vulnerabilities.

Software that records information about a PC and its users, often installed without the user's consent.

A type of antivirus software that protects against malware.

A program that speeds up computer performance by cleaning up files.

A tool used for monitoring network traffic and performance.

The degree of access that a threat actor possesses before initiating an attack.

An external threat actor has standing privileges.

An internal actor has no access permissions.

Both internal and external actors have the same level of access.

A type of malware that encrypts files on a victim's computer.

Malware that creates a backdoor remote administration channel to allow a threat actor to access and control the infected host.

A legitimate software used for remote desktop access.

A virus that spreads through email attachments.

Malware that tries to extort money from the victim by blocking normal operation of a computer and/or encrypting the victim’s files and demanding payment.

A type of software that protects against viruses and malware.

A program that speeds up computer performance by removing unnecessary files.

A tool used for data recovery after a system crash.