Dictionary

A

Antivirus detects, prevents, and removes malware from devices.

Arctic Wolf protects organizations from cyber threats.

Artificial general intelligence (AGI)

Artificial general intelligence (AGI) is AI that can learn, understand, and apply knowledge across different areas, like a human.

Artificial intelligence (AI)

Artificial intelligence means computers that can think and reason independently, created by humans.

Authentication verifies identity and secures access.

Azure is Microsoft’s cloud platform that consists of over 200 products and cloud services.

B

Baiting lures victims with tempting offers.

Beste praksis streber etter høyest mulig sikkerhet

Bluejacking sends unsolicited messages via Bluetooth.

Botnet are infected computers controlled by attackers.

Brute force attack

Brute force attack tests all password combinations.

Bug bounty rewards ethical hackers for vulnerability findings.

C

Carding is fraud with stolen credit card information.

CISO-for-hire offers temporary security expertise.

Compliance ensures IT solutions meet legal requirements.

Credential Stuffing

Credential stuffing uses stolen usernames and passwords from attacks to gain access to new accounts.

Cyber insurance

Cyber insurance provides financial protection against cyberattacks.

Cyber Kill Chain

Cyber Kill Chain breaks down cyberattacks into seven phases.

Cybersecurity protects against digital attacks.

D

Dark web requires special software for access.

A data breache occur when unauthorized persons steal information.

A data lake stores large amounts of data in its original form.

Deep packet inspection (DPI)

DPI analyzes and filters network traffic at a deep level.

Deep web is not indexed by search engines like Google.

Digital identification

Digital identification verifies identity online.

Digital twin security

Digital twin security protects virtual models of physical systems.

Dumpster diving

Dumpster diving is searching through trash for sensitive information.

E

Eavesdropping attack

Eavesdropping attacks threaten data confidentiality.

Expert systems (AI)

Expert systems (AI) follow predefined rules.

Exploit kits exploit vulnerabilities to infect systems with malware.

F

F5 protects applications and APIs from risks and threats.

Fileless malware

Fileless malware uses system processes without files.

A firewall is a barrier between internal and external networks.

G

GDPR is an EU regulation that protects personal data.

Global Secure Access (GSA)

GSA is part of Microsoft's SSE solution, combining security for networks, identities, and endpoints to secure access from anywhere.

H

Hacking is the act of accessing digital devices and networks without permission.

Hacktivism uses hacking to achieve political or social goals.

A honeytoken (pot) is a digital decoy used in cybersecurity to detect unauthorized access.

I

ISO/IEC 27001 is an international standard for information security.

J

Juice jacking is a cyberattack where public USB chargers transfer malware or steal data.

M

Machine learning (AI)

This model learns and improves from data and experience. Generative AI (GAI) is a typical example of machine learning.

Man-in-the-middle (MITM) attack

A Man-in-the-middle (MITM) attack is when an attacker intercepts and manipulates communication between two parties without them knowing.

Microsoft is an American tech company founded in 1975.

Microsoft Intune

Microsoft Intune is a cloud-based solution for endpoint management.

N

Neural networks and deep learning (AI)

Neural networks and deep learning are forms of artificial intelligence inspired by the structure and functions of the human brain.

NIS2 is the EU's directive for information security, aiming to protect critical services from cyber threats.

O

O3 Cyber is a Norwegian security firm specializing in cloud security and partnering with Sicra.

P

Palo Alto Networks

Palo Alto Networks is a global cybersecurity firm known for its advanced firewalls and cloud security solutions.

Password spraying

Password spraying is a brute force method where attackers use common passwords to access many accounts, reducing detection risk.

Pentesting simulates cyberattacks to find vulnerabilities

Phishing is a social engineering method where someone is tricked into giving away sensitive information.

Pretexting is a social engineering tactic where an attacker uses a fake story to trick someone into sharing sensitive information.

Q

Quishing is a phishing attack using malicious QR codes to steal sensitive information.

R

River Security helps businesses protect against digital attacks by identifying and showing vulnerabilities to prevent hacker exploitation.

S

Security classification

A security classification grades content before sharing sensitive information.

Session hijacking

Session hijacking happens when an attacker takes over a user's session by stealing the session ID.

A SOC (Security Operations Center) monitors and manages an organization's cybersecurity incidents.

Social engineering

Social engineering uses tricks to get people to reveal sensitive information or do harmful things.

Splunk helps organizations collect and analyze data in real-time.

Spoofing is fraud where the sender fakes their identity to trick the victim.

Stuxnet is a sophisticated computer worm that targeted industrial control systems and disrupted Iran's nuclear program. Read on to understand how this worm changed cyber warfare.

Synthetic identity theft

Synthetic identity theft is when criminals use a mix of real and fake information to create a fake identity.

V

Vishing is a phone scam where attackers pretend to be legitimate to steal sensitive information.

W

Whaling is a phishing attack aimed at high-ranking executives or influential individuals.

Z

Zero Trust is a security model that assumes no users, applications, or devices are trustworthy.

Zero-Day vulnerability

A Zero-Day vulnerability is an unknown security weakness in software, hardware, or firmware.