Software Threats

• Defects leading to errors
• Defects being exploited
• Malware: viruses, worms, etc.
• Bots or Botnets
• Invalidated inputs
• Authentication attacks
• Exploitation of misconfigurations

Software Threats – Cont'

• Login and session-related issues
• Inappropriate error handling by apps
• Buffer overflow issues
• Mishandled cryptography by apps
• Variable manipulations/abuse
• OS-related issues and flaws

Human Threats

• Social engineering
• Hacker attacks
• Blackmail, extortion
• Espionage (= spying)

Compliance Threats

• Fees, penalties, and closure
  of a company when it doesn't
  follow security laws and rules.