# Wrap-up; terms and definitions from course 5, week 4

<div class="cds-1 css-1shylkf cds-2" id="bkmrk-managing-threats-is-"><div class="cds-1 rc-Paragraph css-1lz62pp cds-3 cds-grid-item"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">Managing threats is a major part </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">of what security professionals do. </span><div class="phrases"><div aria-label="toggle video from In this part of the course," class="rc-Phrase css-13o25cb" data-cue="3" data-cue-index="2" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">In this part of the course, </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">we've explored some common types </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">of cyber threats that you'll </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">likely encounter in the field. Let's review. </span></div></div></div></div><div class="cds-1 css-1shylkf cds-2" id="bkmrk-we-started-off-discu"><div class="cds-1 rc-Paragraph css-1lz62pp cds-3 cds-grid-item"><div class="phrases"><div aria-label="toggle video from We started off discussing social engineering." class="rc-Phrase css-13o25cb" data-cue="7" data-cue-index="6" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">We started off discussing social engineering. </span></div><div aria-label="toggle video from You learned that attackers have a variety of ways to" class="rc-Phrase css-13o25cb" data-cue="8" data-cue-index="7" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">You learned that attackers have a variety of ways to </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">trick their targets into sharing private information. </span></div><div aria-label="toggle video from Social engineering techniques rely on" class="rc-Phrase css-13o25cb" data-cue="10" data-cue-index="9" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">Social engineering techniques rely on </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">exploiting people's trust and willingness to help. </span></div><div aria-label="toggle video from Phishing attacks are one of the most common ways" class="rc-Phrase css-13o25cb" data-cue="12" data-cue-index="11" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">Phishing attacks are one of the most common ways </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">that attackers go about manipulating their targets.   
</span></div></div></div></div><div class="cds-1 css-1shylkf cds-2" id="bkmrk-next%2C-we-explored-ma"><div class="cds-1 rc-Paragraph css-1lz62pp cds-3 cds-grid-item"><div class="phrases"><div aria-label="toggle video from Next, we explored malware." class="rc-Phrase css-13o25cb" data-cue="14" data-cue-index="13" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">Next, we explored malware. </span></div><div aria-label="toggle video from Here, we discussed the major classes of malware," class="rc-Phrase css-13o25cb" data-cue="15" data-cue-index="14" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">Here, we discussed the major classes of malware, </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">like viruses, trojans, and worms. </span></div><div aria-label="toggle video from current lecture segment: You learned how to spot signs of infection." class="rc-Phrase active css-13o25cb" data-cue="17" data-cue-index="16" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">You learned how to spot signs of infection. </span></div><div aria-label="toggle video from You also learned how malware has" class="rc-Phrase css-13o25cb" data-cue="18" data-cue-index="17" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">You also learned how malware has </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">evolved and become more sophisticated over the years.   
</span></div></div></div></div><div class="cds-1 css-1shylkf cds-2" id="bkmrk-after-that%2C-we-turne"><div class="cds-1 rc-Paragraph css-1lz62pp cds-3 cds-grid-item"><div class="phrases"><div aria-label="toggle video from After that, we turned our attention to" class="rc-Phrase css-13o25cb" data-cue="20" data-cue-index="19" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">After that, we turned our attention to </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">web-based exploits, specifically injection attacks. </span></div><div aria-label="toggle video from You learned about cross-site scripting" class="rc-Phrase css-13o25cb" data-cue="22" data-cue-index="21" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">You learned about cross-site scripting </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">and SQL injection, </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">two of the most common types of </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">attacks facing organizations online. </span></div><div aria-label="toggle video from We discussed how each of these attacks are carried out." class="rc-Phrase css-13o25cb" data-cue="26" data-cue-index="25" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">We discussed how each of these attacks are carried out. </span></div><div aria-label="toggle video from You also learned about how" class="rc-Phrase css-13o25cb" data-cue="27" data-cue-index="26" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">You also learned about how </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">web applications can be protected from malicious code. </span></div><div aria-label="toggle video from Finally, we explored the threat modeling process." class="rc-Phrase css-13o25cb" data-cue="29" data-cue-index="28" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">Finally, we explored the threat modeling process. </span></div><div aria-label="toggle video from You learned the process that security teams" class="rc-Phrase css-13o25cb" data-cue="30" data-cue-index="29" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">You learned the process that security teams </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">use to perform these exercises.   
</span></div></div></div></div><div class="cds-1 css-1shylkf cds-2" id="bkmrk-unfortunately%2C-cyber"><div class="cds-1 rc-Paragraph css-1lz62pp cds-3 cds-grid-item"><div class="phrases"><div aria-label="toggle video from Unfortunately, cyberattacks and" class="rc-Phrase css-13o25cb" data-cue="32" data-cue-index="31" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">Unfortunately, cyberattacks and </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">security breaches are a reality that </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">we're challenged with on a regular basis. </span></div><div aria-label="toggle video from However, being aware of" class="rc-Phrase css-13o25cb" data-cue="35" data-cue-index="34" role="button" tabindex="0"><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">However, being aware of </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">the type of threats that exist and </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">the threat modeling process provides </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">an important foundation for </span><span aria-hidden="true" class="cds-108 css-80vnnb cds-110">your work as a security analyst. </span></div></div></div></div><div aria-label="toggle video from However, being aware of" class="rc-Phrase css-13o25cb" data-cue="35" data-cue-index="34" id="bkmrk-" role="button" tabindex="0"></div><div aria-label="toggle video from However, being aware of" class="rc-Phrase css-13o25cb" data-cue="35" data-cue-index="34" id="bkmrk--1" role="button" tabindex="0">---

</div># Glossary terms from week 4

**Angler phishing:** A technique where attackers impersonate customer service representatives on social media

**Advanced persistent threat (APT):** Instances when a threat actor maintains unauthorized access to a system for an extended period of time

**Adware:** A type of legitimate software that is sometimes used to display digital advertisements in applications

**Attack tree:** A diagram that maps threats to assets

**Baiting:** A social engineering tactic that tempts people into compromising their security

**Botnet:** A collection of computers infected by malware that are under the control of a single threat actor, known as the “bot-herder"

**Cross-site scripting (XSS):** An injection attack that inserts code into a vulnerable website or web application

**Cryptojacking:** A form of malware that installs software to illegally mine cryptocurrencies

**DOM-based XSS attack:** An instance when malicious script exists in the webpage a browser loads

**Dropper:** A type of malware that comes packed with malicious code which is delivered and installed onto a target system

**Fileless malware:** Malware that does not need to be installed by the user because it uses legitimate programs that are already installed to infect a computer

**Hacker:** Any person or group who uses computers to gain unauthorized access to data

**Identity and access management (IAM):** A collection of processes and technologies that helps organizations manage digital identities in their environment

**Injection attack:** Malicious code inserted into a vulnerable application

**Input validation:** Programming that validates inputs from users and other programs

**Intrusion detection system (IDS):** An application that monitors system activity and alerts on possible intrusions

**Loader:** A type of malware that downloads strains of malicious code from an external source and installs them onto a target system

**Malware:** Software designed to harm devices or networks

**Process of Attack Simulation and Threat Analysis (PASTA):** A popular threat modeling framework that’s used across many industries

**Phishing:** The use of digital communications to trick people into revealing sensitive data or deploying malicious software

**Phishing kit:** A collection of software tools needed to launch a phishing campaign

**Prepared statement:** A coding technique that executes SQL statements before passing them onto the database

**Potentially unwanted application (PUA):** A type of unwanted software that is bundled in with legitimate programs which might display ads, cause device slowdown, or install other software

**Quid pro quo:** A type of baiting used to trick someone into believing that they’ll be rewarded in return for sharing access, information, or money

**Ransomware:** Type of malicious attack where attackers encrypt an organization’s data and demand payment to restore access

**Reflected XSS attack:** An instance when malicious script is sent to a server and activated during the server’s response

**Rootkit:** Malware that provides remote, administrative access to a computer

**Scareware:** Malware that employs tactics to frighten users into infecting their device

**Smishing**: The use of text messages to trick users to obtain sensitive information or to impersonate a known source

**Social engineering:** A manipulation technique that exploits human error to gain private information, access, or valuables

**Spear phishing:** A malicious email attack targeting a specific user or group of users, appearing to originate from a trusted source

**Spyware:** Malware that’s used to gather and sell information without consent

**SQL (Structured Query Language):** A programming language used to create, interact with, and request information from a database

**SQL injection:** An attack that executes unexpected queries on a database

**Stored XSS attack:** An instance when malicious script is injected directly on the server

**Tailgating:** A social engineering tactic in which unauthorized people follow an authorized person into a restricted area

**Threat:** Any circumstance or event that can negatively impact assets

**Threat actor:** Any person or group who presents a security risk

**Threat modeling:** The process of identifying assets, their vulnerabilities, and how each is exposed to threats

**Trojan horse:** Malware that looks like a legitimate file or program

**Vishing:** The exploitation of electronic voice communication to obtain sensitive information or to impersonate a known source

**Watering hole attack**: A type of attack when a threat actor compromises a website frequently visited by a specific group of users

**Whaling:** A category of spear phishing attempts that are aimed at high-ranking executives in an organization

**Web-based exploits:** Malicious code or behavior that’s used to take advantage of coding flaws in a web application