External Threats: Groups and Examples
Software Threats
- Defects leading to errors
- Defects being exploited
- Malware: viruses, worms, etc.
- Bots or Botnets
- Invalidated inputs
- Authentication attacks
- Exploitation of misconfigurations
Software Threats – Cont'
- Login and session-related issues
- Inappropriate error handling by apps
- Buffer overflow issues
- Mishandled cryptography by apps
- Variable manipulations/abuse
- OS-related issues and flaws
Human Threats
- Social engineering
- Hacker attacks
- Blackmail, extortion
- Espionage (= spying)
Compliance Threats
- Fees, penalties, and closure
of a company when it doesn't
follow security laws and rules.