Cyber Glossary

Access control involves managing and regulating who can access resources or data within a system. It includes authentication to verify user identity and authorization to determine what actions they are allowed to perform.

APT is a sophisticated and targeted cyber attack strategy where skilled attackers infiltrate a specific target over a prolonged period. They use advanced techniques, such as custom malware and social engineering, to gain unauthorized access, maintain persistence, and steal valuable information without detection

Adware is software that displays advertising content, often intrusively, to generate revenue for developers. It is typically bundled with free software and can impact user experience or compromise privacy.

Anti-malware software detects, prevents, and removes malicious software (malware) from computer systems. It employs techniques like signature-based detection and behavioral analysis to protect systems from viruses, worms, Trojans, ransomware, and spyware.

Authentication is the process of verifying the identity of a user or entity trying to access a system. It confirms that the claimed identity matches the actual identity using methods like passwords, biometrics, or security tokens.

Authorization determines the permissions and privileges granted to authenticated users based on their verified identity. It ensures users have appropriate access rights to resources and systems, following security policies and access control rules.

Attack surface refers to all the possible entry points and vulnerabilities that attackers can exploit in a system or network. It includes interfaces, protocols, applications, and hardware components, and a larger attack surface increases the risk of successful attacks.

An attack vector is the specific method or pathway used by attackers to launch a cyber attack. It can involve techniques like phishing emails, malware-infected attachments, network exploits, or social engineering to exploit vulnerabilities in a target system.