The Internet can be a dangerous place, especially now that hackers are taking advantage of advanced tools and threats. New types of malware, ransomware, and viruses are being created every day, for the express purpose of seeing your organization fail. If your business isn’t using comprehensive security solutions, you remain vulnerable to threats that can potentially compromise and damage your business’s IT infrastructure. To help make cybersecurity easier for you, we’ve compiled a list of threats that your business should be prepared to face. Advanced Persistent Threat (APT): An APT is a stealthy network breach that’s designed to remain undetected for a certain amount of time. APTs are usually used to steal information from a specific individual or organization over time, rather than cause an immediate disruption to operations. Adware: Adware automatically displays ads on software, particularly web browsers, in an effort to generate revenue for its creator. Adware can often come packaged with free online software, and while it’s not immediately threatening, it can become a severe annoyance and potential security threat. When used as malware, adware can display unwanted (and often embarrassing) advertisements in the form of popups or web ads. Botnet: A botnet is a collective term used for a network of devices built from “bots,” which are computers controlled remotely by a hacker. Botnets are typically used to complete repetitive tasks, like sending spam messages or participating in Distributed Denial of Service (DDoS) attacks. Due to botnets spreading their infection to other computers, they’re often likened to a “zombie horde.” Brute-force Attacks: Brute-force attacks are commonly used tactics to break into online accounts, particularly those that take advantage of encryption. A brute-force attack consists of the hacker rapidly inputting as many passwords as possible in an attempt to find the right combination of characters. Command and Control Server: A command and control server (C&C server) is the central computer that remotely issues commands to botnets and other malware. These botnets and malware will then send information back to the C&C server, like sensitive data or account credentials. Dictionary Attack: Dictionary attacks utilize known words or phrases in an attempt to crack through passwords and usernames. They can be used in conjunction with brute-force attacks to guess credentials and infiltrate accounts. Distributed Denial of Service (DDoS): A DDoS attack consists of multiple systems from varied locations target a single system. The resulting traffic is usually an attempt to bring down a server, forcing it offline until the attack ceases. DDoS attacks are often performed by botnets, compromised computers that have been enslaved by hackers to do their bidding. Exploit: A loose definition would be a tool designed for use in exploiting a specific vulnerability within an IT system component, usually for the purpose of stealing data or installing malicious software. Keylogging: A keylogger could be either a software or a hardware that’s designed to capture and record keystrokes. Software versions of keyloggers are often included in viruses or malware packages to capture credentials for later use. The victim is typically unaware that their activities are being monitored. Malware: Malware, derived from “malicious software,” is a term used to describe any cyber threat that is intrusive and malicious in nature. This can include any number of online threats, including computer viruses, trojans, ransomware, spyware, and others. Malware is … Continue reading IT Threat Glossary