|
attack : attempt to break in to one or more computers
and take malicious action -- may or may not
be successful on a particular computer.
attack vector : the specific method or route used to gain entry to a computer or deliver
a malicious payload. Attack vectors take
advantage of weak spots (often the human
element) to gain entry to computers. They're
often confused with the payloads themselves.
For example, the "SoBig" worm -- an attack vector -- is often called a
virus, which is a payload. Strictly speaking,
worms are not viruses. Their name comes not
from their payload, but because they "worm"
their way across networks. Attack vectors
"carry" (remember Typhoid Mary?) viruses or other payloads. Confusing,
eh?
computer system : see system below
cracker : usually means a malicious hacker -- often referred to as a "black hat"
or "black hat hacker" People who
break the protection of software so that
illegal copies can be made are called crackers
too, and finally. I believe it's also a southern
term for a poor white person.
definitions : see signatures below
email worm: malicious code that replicates itself by
searching through the victims
address book
and mailing itself to the addresses
it finds
(see worm below.
exploit : attack based on a specific vulnerability,
for example the preview pane of Outlook Express
can activate malicious content in email messages
that are in HTML format.
foistware : software that foists hidden components to
your system on the sly -- usually
bundled
with "bait" software
which incites
download by impulse.
hack(ing) : break(ing) into and compromising a computer
in person (hacker/cracker), rather than through
malware.
hacker : adept computer programmer, often self taught
-- often referred to as a "white hat",
but loosly used as a generic term for cracker.
malware : general term for malevolent computer code
-- the parasites of the digital world. Trojan-horses,
adware, spyware, hijackers, dialers, viruses
and worms are specific examples. The first
malware -- back before the term existed --
was a virus. "Virus" is also used (carelessly
IMHO) as a generic term for malware.
identity theft : taking over your financial identity: The
first step is collection of enough
of your
personal data to be able to take
the second
step, which will probably be
to apply for
new credit cards in your name
and plunder
them before you find out. More
identity theft
actually starts with offline
information
theft, than with online theft,
but the trend
is increasingly online.
payload : malicious code carried by attack vectors
-- spyware, Trojan-horses, dialers, destructive
code and other malware. Some attacks deliver
multiple payloads (warheads).
script kiddies : simply download other people's hacking tools
and malware and tweak it.
signatures (definitions) : telltale characteristics -- the fingerprints
or DNA of viruses and other malware Signature files are frequently updated, as
often as once a day.
social engineering : convincing a computer user to provide information,
for example passwords, that makes gaining
access to a computer or online account easy.
spoof : It's very easy to put bogus "From",
"To" and "Reply To" addresses
in email messages. It's a common part of
social engineering (above). It's also easy
to set up a counterfeit Web site, or create
links in email messages or on Web sites that
don't take you where it looks like they will.
All this is spoofing.
system : a group of independent but interrelated elements
comprising a unified whole --
in this security
context, either the operating
system and
its adjuncts, or the computer
system as a
whole, which includes the operator.
system worm : my term for the first class of worm (see
worm below) which propogates without human
intervention.
Trojan-horse (Trojan) : parasitic software used to infiltrate targeted
computers so the Trojan-master can access
them remotely. Often designed for a specific
purpose, such as relaying spam, but some
Trojans give the master total control of
the computer. Trojans seldom do damage, as a virus would,
because the master wants his control to remain
hidden.
vector : from biology -- any agent that carries and
transmits a disease (see attack vector)
virus : a program that reproduces its own code by
attaching itself to other executable files
so that the virus code runs when the infected
executable file is run. Viruses almost always
seek to do damage as well as replicate."Virus" is often used (carelessly
IMHO) for any kind of malware -- worms, Trojans,
spyware, etc.
virus definitions : see signatures above
web mail : email that presents messages as webpages,
rather than classic email, where the messages
are downloaded directly. Web mail is read
in a browser, rather than in an email client,
so browser security considerations apply.
The practical effect is usually somewhat
reduced security.
worm : (1) malicious code that breaks into other
computers and starts itself running with
no human intervention, and subsequently atttempts
to break into more computers from the newly
infected one; (2) malware that self-propagates
by emailing copies of itself from computers
it has already infected (this one requires
human intervention -- opening the attachment
-- and so is often called a virus).
zombie : a computer with a Trojan-horse installed.
The Trojan lets the Trojan owner access the
computer remotely. Now it can be used as
a staging ground for anonymous attacks on
other computers.
Resources
http://pestpatrol.com/PestInfo/G/Glossary.asp -- comprehensive glossary
http://www.spywareguide.com/ -- excellent reference source
|