Get started

Get started

Bring yourself up to speed with our introductory content.

• three-factor authentication (3FA)

  Three-factor authentication (3FA) is the use of identity-confirming credentials from three separate categories of authentication factors -- typically, the knowledge, possession and inherence categories. Continue Reading

• cyber espionage

  Cyber espionage (cyberespionage) is a type of cyber attack that malicious hackers carry out against a business or government entity. Continue Reading

• role-based access control (RBAC)

  Role-based access control (RBAC) is a method of restricting network access based on the roles of individual users within an enterprise. Continue Reading

• FIDO (Fast Identity Online)

  FIDO (Fast Identity Online) is a set of technology-agnostic security specifications for strong authentication. Continue Reading

• Cloud Security Alliance (CSA)

  The Cloud Security Alliance (CSA) is a nonprofit organization that promotes research into best practices for securing cloud computing and the use of cloud technologies to secure other forms of computing. Continue Reading

• Definitions to Get Started

  • three-factor authentication (3FA)
  • cyber espionage
  • role-based access control (RBAC)
  • FIDO (Fast Identity Online)

  • Cloud Security Alliance (CSA)
  • quantum supremacy
  • YubiKey
  • antivirus software (antivirus program)

  View All Definitions

• quantum supremacy

  Quantum supremacy is the experimental demonstration of a quantum computer's dominance and advantage over classical computers by performing calculations previously impossible at unmatched speeds.Continue Reading

• YubiKey

  YubiKey is a security token that enables users to add a second authentication factor to online services from tier 1 vendor partners, including Google, Amazon, Microsoft and Salesforce.Continue Reading

• antivirus software (antivirus program)

  Antivirus software (antivirus program) is a security program designed to prevent, detect, search and remove viruses and other types of malware from computers, networks and other devices.Continue Reading

• Top 30 incident response interview questions

  Job interviews are nerve-wracking, but preparation can help minimize jitters and position you to land the role. Get started with these incident response interview questions.Continue Reading

• information security (infosec)

  Information security (infosec) is a set of policies, procedures and principles for safeguarding digital data and other kinds of information.Continue Reading

• What is incident response? Plans, teams and tools

  Incident response is an organized, strategic approach to detecting and managing cyber attacks in ways that minimize damage, recovery time and total costs.Continue Reading

• cyberwarfare

  The generally accepted definition of cyberwarfare is a series of cyber attacks against a nation-state, causing it significant harm.Continue Reading

• fuzz testing (fuzzing)

  Fuzz testing (fuzzing) is a quality assurance technique used to discover coding errors or bugs and security loopholes in software, operating systems and networks.Continue Reading

• How to create an incident response playbook

  Working from an incident response playbook can speed organizations' responses to cyber attacks. Find out how to build repeatable playbooks to use for different types of incidents.Continue Reading

• SOAR (security orchestration, automation and response)

  Security orchestration, automation and response, or SOAR, is a stack of compatible software programs that enables an organization to collect data about security threats and respond to security events with little or no human assistance.Continue Reading

• digital signature

  A digital signature is a mathematical technique used to validate the authenticity and integrity of a message, software or digital document.Continue Reading

• How to create a CSIRT: 10 best practices

  The time to organize and train a CSIRT is long before a security incident occurs. Certain steps should be followed to create an effective, cross-functional team.Continue Reading

• sudo (su 'do')

  Sudo is a command-line utility for Unix and Unix-based operating systems such as Linux and macOS.Continue Reading

• Incident management vs. incident response explained

  While even many seasoned cybersecurity leaders use the terms 'incident management' and 'incident response' interchangeably, they aren't technically synonymous.Continue Reading

• Top incident response tools: How to choose and use them

  The OODA loop can help organizations throughout the incident response process, giving insight into which tools are needed to detect and respond to security events.Continue Reading

• How to conduct incident response tabletop exercises

  Have an incident response plan but aren't running incident response tabletop exercises? These simulations are key to knowing if your plan will work during an actual security event.Continue Reading

• E-Sign Act (Electronic Signatures in Global and National Commerce Act)

  The E-Sign Act (Electronic Signatures in Global and National Commerce Act) is a U.S. federal law that specifies that, in the United States, the use of an electronic signature (e-signature) is as legally valid as a traditional signature written in ...Continue Reading

• personally identifiable information (PII)

  Personally identifiable information (PII) is any data that could potentially identify a specific individual.Continue Reading

• Incident response automation: What it is and how it works

  Many of today's security operations teams are understaffed and overwhelmed. Learn how incident response automation can help them work smarter, instead of harder.Continue Reading

• social media policy

  A social media policy is a corporate code of conduct that provides guidelines for employees who post content on the internet either as part of their job or as a private person.Continue Reading

• SOAR vs. SIEM: What's the difference?

  When it comes to the SOAR vs. SIEM debate, it's important to understand their fundamental differences to get the most benefit from your security data.Continue Reading

• passwordless authentication

  Passwordless authentication is signing into a service without using a password.Continue Reading

• incident response team

  An incident response team is a group of IT professionals in charge of preparing for and reacting to any type of organizational emergency.Continue Reading

• crypto wallet (cryptocurrency wallet)

  A crypto wallet (cryptocurrency wallet) is software or hardware that enables users to store and use cryptocurrency.Continue Reading

• reverse brute-force attack

  A reverse brute-force attack is a type of brute-force attack in which an attacker uses a common password against multiple usernames in an attempt to gain access to a network.Continue Reading

• Windows Defender Exploit Guard

  Microsoft Windows Defender Exploit Guard is antimalware software that provides intrusion protection for Windows 10 OS users.Continue Reading

• Incident response: How to implement a communication plan

  Communication is critical to an effective incident response plan. Here are five best practices organizations can use to gather and share information.Continue Reading

• SOC 3 (System and Organization Controls 3)

  A System and Organization Controls 3 (SOC 3) report outlines information related to a service organization's internal controls for security, availability, processing integrity, confidentiality and privacy.Continue Reading

• tokenization

  Tokenization is the process of replacing sensitive data with unique identification symbols that retain all the essential information about the data without compromising its security.Continue Reading

• messaging security

  Messaging security is a subcategory of unified threat management, or UTM, focused on securing and protecting an organization's communication infrastructure.Continue Reading

• WebAuthn API

  The Web Authentication API (WebAuthn API) is a credential management application program interface (API) that lets web applications authenticate users without storing their passwords on servers.Continue Reading

• How to build an incident response plan, with examples, template

  With cyber threats and security incidents growing by the day, every organization needs a solid incident response plan. Learn how to create one for your company.Continue Reading

• Common Vulnerability Scoring System (CVSS)

  The Common Vulnerability Scoring System (CVSS) is a public framework for rating the severity of security vulnerabilities in software.Continue Reading

• How to use BeEF, the Browser Exploitation Framework

  The open source BeEF pen testing tool can be used by red and blue teams alike to hook web browsers and use them as beachheads to launch further attacks.Continue Reading

• Dridex malware

  Dridex is a form of malware that targets victims' banking information, with the main goal of stealing online account credentials to gain access to their financial assets.Continue Reading

• zero-day (computer)

  A zero-day is a security flaw in software, hardware or firmware that is unknown to the party or parties responsible for patching or otherwise fixing the flaw.Continue Reading

• Ransomware trends, statistics and facts in 2023

  Supply chain attacks, double extortion and RaaS were just a few of the ransomware trends that plagued 2022 and will continue to disrupt businesses in 2023.Continue Reading

• backdoor (computing)

  A backdoor attack is a means to access a computer system or encrypted data that bypasses the system's customary security mechanisms.Continue Reading

• 4 tips to find cyber insurance coverage in 2023

  The cyber insurance industry is settling down but isn't without challenges. Read up on cyber insurance in 2023 and how to get the most from your organization's coverage this year.Continue Reading

• Heartbleed

  Heartbleed was a vulnerability in some implementations of OpenSSL, an open source cryptographic library.Continue Reading

• What is cybersecurity?

  Cybersecurity is the protection of internet-connected systems such as hardware, software and data from cyberthreats.Continue Reading

• Mitre ATT&CK framework

  The Mitre ATT&CK (pronounced "miter attack") framework is a free, globally accessible framework that provides comprehensive and up-to-date cyber threat information to organizations looking to strengthen their cybersecurity strategies.Continue Reading

• What is Triple DES and why is it being disallowed?

  Triple DES no longer provides the encryption strength it once did. Prepare now to transition away from its use to a more security alternative.Continue Reading

• credential theft

  Credential theft is a type of cybercrime that involves stealing a victim's proof of identity.Continue Reading

• self-sovereign identity

  Self-sovereign identity (SSI) is a model for managing digital identities in which individuals or businesses have sole ownership over the ability to control their accounts and personal data.Continue Reading

• Certified Information Systems Security Professional (CISSP)

  Certified Information Systems Security Professional (CISSP) is an information security certification developed by the International Information Systems Security Certification Consortium, also known as (ISC)².Continue Reading

• privilege creep

  Privilege creep is the gradual accumulation of access rights beyond what individuals need to do their job.Continue Reading

• 10 must-have cybersecurity skills for career success in 2023

  Looking to advance your cybersecurity career? Here are the skills you'll need to win that CISO job, land a gig as a threat hunter and snag other security positions in high demand.Continue Reading

• What enumeration attacks are and how to prevent them

  Web applications may be vulnerable to user enumeration attacks. Learn how these brute-forcing attacks work and how to prevent them.Continue Reading

• Top 12 online cybersecurity courses for 2023

  Our panel of experts picked the best free and paid online cybersecurity courses for working professionals looking to advance their careers and for newbies breaking into the field.Continue Reading

• GPS jamming

  GPS jamming is the act of using a frequency transmitting device to block or interfere with radio communications.Continue Reading

• What are the differences between su and sudo commands?

  Linux administrators have choices when deciding how to delegate privileges. Learn about the options they can take while ensuring their operations remain secure.Continue Reading

• 12 types of wireless network attacks and how to prevent them

  From packet sniffing and rogue access points to spoofing attacks and encryption cracking, learn about common wireless network attacks and how to prevent them.Continue Reading

• checksum

  A checksum is a value that represents the number of bits in a transmission message and is used by IT professionals to detect high-level errors within data transmissions.Continue Reading

• security information and event management (SIEM)

  Security information and event management (SIEM) is an approach to security management that combines security information management (SIM) and security event management (SEM) functions into one security management system.Continue Reading

• How to use the Hydra password-cracking tool

  Need help brute-forcing passwords? Get started by learning how to use the open source Hydra tool with these step-by-step instructions and companion video.Continue Reading

• Evil Corp

  Evil Corp is an international cybercrime network that uses malicious software to steal money from victims' bank accounts and to mount ransomware attacks.Continue Reading

• Trojan horse

  In computing, a Trojan horse is a program downloaded and installed on a computer that appears harmless, but is, in fact, malicious.Continue Reading

• 7 steps to implementing a successful XDR strategy

  There's still confusion around what extended detection and response is, but it will play a key role in enterprise security. To successfully implement XDR, follow these steps.Continue Reading

• Top 5 key ethical hacker skills

  Ethical hacking can be a rewarding career, but it requires tenacity, curiosity and creativity, among other traits. Oh, and you better be a good writer, too.Continue Reading

• quantum key distribution (QKD)

  Quantum key distribution (QKD) is a secure communication method for exchanging encryption keys only known between shared parties.Continue Reading

• Common Body of Knowledge (CBK)

  In security, the Common Body of Knowledge (CBK) is a comprehensive framework of all the relevant subjects a security professional should be familiar with, including skills, techniques and best practices.Continue Reading

• buffer underflow

  A buffer underflow, also known as a buffer underrun or a buffer underwrite, is when the buffer -- the temporary holding space during data transfer -- is fed data at a lower rate than it is being read from.Continue Reading

• pen testing (penetration testing)

  A penetration test, also called a pen test or ethical hacking, is a cybersecurity technique that organizations use to identify, test and highlight vulnerabilities in their security posture.Continue Reading

• single sign-on (SSO)

  Single sign-on (SSO) is a session and user authentication service that permits a user to use one set of login credentials -- for example, a name and password -- to access multiple applications.Continue Reading

• time-based one-time password

  A time-based one-time password (TOTP) is a temporary passcode generated by an algorithm that uses the current time of day as one of its authentication factors.Continue Reading

• 5 essential programming languages for cybersecurity pros

  Coding is an important skill across almost every technology discipline today, and cybersecurity is no exception. Learn about the top programming languages for security professionals.Continue Reading

• The 7 core pillars of a zero-trust architecture

  Learn how Forrester's seven pillars of zero trust model can help IT leaders identify, organize and implement the appropriate cybersecurity tools for a zero-trust framework.Continue Reading

• Equipment to include in a computer forensic toolkit

  Computer forensic investigators require more than software to do their job. Learn what equipment constitutes a complete computer forensic toolkit.Continue Reading

• Advice for beginner computer forensic investigators

  For those interesting in becoming a computer forensics investigator, learn about the career and what to expect, as well as why digital evidence is the most volatile evidence.Continue Reading

• RAT (remote access Trojan)

  A RAT (remote access Trojan) is malware an attacker uses to gain full administrative privileges and remote control of a target computer.Continue Reading

• Top 10 pen testing interview questions with answers

  Are you pursuing a career in pen testing? Prepare with this list of 10 pen testing interview questions and answers created by three security experts.Continue Reading

• Top IT security manager interview questions

  Are you looking for a leadership role in cybersecurity? Three security experts offer their advice on how to answer the most common IT security manager interview questions.Continue Reading

• Diffie-Hellman key exchange (exponential key exchange)

  Diffie-Hellman key exchange is a method of digital encryption that securely exchanges cryptographic keys between two parties over a public channel without their conversation being transmitted over the internet.Continue Reading

• How to configure and customize Kali Linux

  Learning how to use Kali Linux for ethical hacking and penetration testing? Read step by step how to configure and customize the distribution.Continue Reading

• An overview of the CISA Zero Trust Maturity Model

  A zero-trust framework blocks all attempts to access internal infrastructure without authentication. The CISA Zero Trust Maturity Model is a roadmap to get there.Continue Reading

• The 5 principles of zero-trust security

  Zero trust is a journey, not a destination. Ensure your corporate network is safe from internal and external threats by implementing these five principles of zero-trust security.Continue Reading

• Why zero trust requires microsegmentation

  Microsegmentation is a key security technique that enables organizations to achieve a zero-trust model and helps ensure the security of workloads regardless of where they are located.Continue Reading

• Zero trust vs. defense in depth: What are the differences?

  Security administrators don't have to choose between zero-trust and defense-in-depth cybersecurity methodologies. Learn how the two frameworks complement each other.Continue Reading

• How to get into cybersecurity with no experience

  Cybersecurity needs new talent now more than ever, but landing that first job without a computer science degree can still be difficult. Here are five tips for getting in the door.Continue Reading

• MICR (magnetic ink character recognition)

  MICR (magnetic ink character recognition) is a technology invented in the 1950s that's used to verify the legitimacy or originality of checks and other paper documents.Continue Reading

• Android System WebView

  Android System WebView is a system component for the Android operating system (OS) that allows Android apps to display web content directly inside an application.Continue Reading

• How DKIM records reduce email spoofing, phishing and spam

  Learn how implementing DomainKeys Identified Mail helps protect against phishing, spam and email forgery by digitally signing outgoing messages.Continue Reading

• How to develop a cybersecurity strategy: Step-by-step guide

  A cybersecurity strategy isn't meant to be perfect, but it must be proactive, effective, actively supported and evolving. Here are the four steps required to get there.Continue Reading

• Cybersecurity career path: 5-step guide to success

  Taking the lead from ISSA's framework, here's a guide to how you can map out a long and profitable career in cybersecurity.Continue Reading

• data masking

  Data masking is a method of creating a structurally similar but inauthentic version of an organization's data that can be used for purposes such as software testing and user training.Continue Reading

• Cloud detection and response: CDR vs. EDR vs. NDR vs. XDR

  Cloud detection and response is the latest detection and response abbreviation. Explore how it differs from endpoint, network and extended detection and response.Continue Reading

• How to become a CISO

  The chief information security officer role is growing in profile and importance. Explore six actionable tips for aspiring CISOs as they work toward cybersecurity's top job.Continue Reading

• computer worm

  A computer worm is a type of malware whose primary function is to self-replicate and infect other computers while remaining active on infected systems.Continue Reading

• How to prepare for post-quantum computing security

  One of the biggest fears about quantum computing is its ability to break encryption algorithms more easily. Learn why and how to start making quantum security preparations now.Continue Reading

• Sample CompTIA CASP+ practice questions with answers

  Preparing for the CompTIA Advanced Security Practitioner certification or refreshing your knowledge to renew your cert? Use these CASP+ practice questions to test your smarts.Continue Reading

• How to prepare for the CompTIA CASP+ exam

  Are you pursuing the CompTIA Advanced Security Practitioner certification? The author of a CASP+ cert guide offers advice on how to prepare for the exam.Continue Reading

• How to create and add an SPF record for email authentication

  Learn how to create Sender Policy Framework records to list authenticated mail servers for an email domain to fight spam, phishing, email forgery and other malicious email.Continue Reading

• How to start developing a plan for SASE implementation

  From prioritizing business problems to identifying future initiatives to assessing critical tool gaps, learn how to create a realistic SASE implementation roadmap.Continue Reading

• corporate governance

  Corporate governance is the combination of rules, processes and laws by which businesses are operated, regulated and controlled.Continue Reading