Cybersecurity 101

Technologies based on algorithms that can learn from data, enabling systems to identify patterns, make decisions, and improve themselves through experience and data.

Online advertisements that contain embedded malware or tricks the user into downloading malware upon reaching the resulting website. Malvertising is usually performed via clickjacking.

A broad term for any software designed to damage, disrupt, or gain unauthorized access to computers, networks, or data. Includes ransomware, viruses, spyware, and much more. Because malware is constantly evolving and increasingly dangerous, modern cybersecurity requires multi-layered defensive tools that include Zero Trust Network Access, Managed Detection and Response, and Endpoint Detection and Response.

Type of cyberattack where attackers secretly insert themselves into the communication channel established between two legitimate parties to read, intercept, or even manipulate the data traffic.

A fully managed cybersecurity service that continuously monitors your IT environment, including endpoints, networks, cloud applications, and user accounts, to detect and stop threats before they cause harm. Unlike traditional tools, which only alert users to possible issues, MDR combines advanced AI-driven analytics and human expertise to investigate and respond to attacks in real time.

A third-party company that remotely manages a customer’s IT infrastructure and end user systems, typically based on a subscription model with service level agreement (SLA). Sometimes referred to as Managed Security Service Provider (MSSP) when provided services are specifically focused on cybersecurity needs.

A not-for-profit organization that operates federally funded research and development centers to support US government agencies in cybersecurity, defense, aviation, and healthcare. MITRE ATT&CK® Evaluations are widely trusted for their transparency and rigor, offering a detailed look at how endpoint security solutions behave during real-world attack scenarios.

A framework that categorizes cybercriminal tactics, techniques, and procedures (TTPs) across the attack lifecycle. It is used by security teams to model, detect, and prevent attacks. MITRE only publishes raw data, making it beneficial to explore vendor and third-party explanations, rankings, and guidance.

An authentication method that requires the user to provide two or more verification factors, such as a password, token, and fingerprint, to gain access to a resource such as an application, online account, or VPN.