External Threats: Groups and Examples

Software Threats

  • Defects leading to errors
  • Defects being exploited
  • Malware: viruses, worms, etc.
  • Bots or Botnets
  • Invalidated inputs
  • Authentication attacks
  • Exploitation of misconfigurations

Software Threats – Cont'

  • Login and session-related issues
  • Inappropriate error handling by apps
  • Buffer overflow issues
  • Mishandled cryptography by apps
  • Variable manipulations/abuse
  • OS-related issues and flaws

Human Threats

  • Social engineering
  • Hacker attacks
  • Blackmail, extortion
  • Espionage (= spying)

Compliance Threats

  • Fees, penalties, and closure
    of a company when it doesn't
    follow security laws and rules.