What is cyber security? What you need to know
Authored by a Symantec employee
Cyber security is the state or process of protecting and recovering networks, devices, and programs from any type of cyberattack.
Cyberattacks are an evolving danger to organizations, employees, and consumers. They may be designed to access or destroy sensitive data or extort money. They can, in effect, destroy businesses and damage people’s financial and personal lives.
What’s the best defense? A strong cyber security system has multiple layers of protection spread across computers, networks, and programs. But a strong cyber security system relies not only on cyber defense technology, but also on people making smart cyber defense choices.
The good news? You don’t need to be a cyber security specialist to understand and practice cyber defense tactics. This guide can help. You’ll learn more about cyber security and how to help defend yourself against cyber threats. It could help you recognize and avoid threats before they’re able to infiltrate your network or device.
Types of cyber threats
There are many types of cyberthreats that can attack your devices and networks, but they generally fall into three categories. The categories are attacks on confidentiality, integrity, and availability.1
- Attacks on confidentiality. These include stealing your personal identifying information and your bank account or credit card information. Many attackers will take your information and sell it on the dark web for others to purchase and use.
- Attacks on integrity. These attacks consist of personal or enterprise sabotage, and are often called leaks. A cybercriminal will access and release sensitive information for the purpose of exposing the data and influencing the public to lose trust in that organization.
- Attacks on availability. The aim of this type of cyberattack is to block users from accessing their own data until they pay a fee or ransom. Typically, a cybercriminal will infiltrate your network and block you from accessing important data, demanding that you pay a ransom. Companies sometimes pay the ransom and fix the cyber vulnerability afterward so that they can avoid halting business activities.
Here are a few types of cyber threats that fall into the three categories listed above:
Social engineering, a type of attack on confidentiality, is the process of psychologically manipulating people into performing actions or giving away information. Phishing attacks are the most common form of social engineering. Phishing attacks usually come in the form of a deceptive email that tricks the user into giving away personal information.
APTs (Advanced Persistent Threats), a type of attack on integrity, are attacks where an unauthorized user infiltrates a network undetected and stays in the network for a long time. The intent of an APT is to steal data and not harm the network. APTs happen most often in sectors with high-value information, such as national defense, manufacturing, and the finance industry.
Malware, or malicious software, is a type of attack on availability. It refers to software that is designed to gain access or damage a computer without the knowledge of the owner. Several common types of malware include spyware, keyloggers, true viruses, and worms.
How to help protect against cyber security attacks
Follow these steps for cyber safety.
- Only use trusted sites when providing your personal information. A good rule of thumb is to check the URL. If the site includes “https://,” then it’s a secure site. If the URL includes “http://,” — note the missing “s” — avoid entering sensitive information like your credit card data or Social Security number.
- Don’t open email attachments or click links in emails from unknown sources. One of the most common ways people are attacked is through emails disguised as being sent by someone you trust.
- Always keep your devices updated. Software updates contain important patches to fix security issues. Cyberattackers thrive on outdated devices because they don’t have the most current security software.
- Back up your files regularly to prevent cyber security attacks. If you need to wipe your device clean due to a cyberattack, it will help to have your files stored in a safe, separate place.
Cyber security is constantly evolving, which can make it difficult to stay up to date. Staying informed and being cautious online are two of the best ways to help protect yourself and your business. To learn more about cyber security, visit our emerging threats center for the latest cyber security news.
New discount! Save 50% on a Norton 360 Standard annual membership your first year.*
Don’t wait to get multiple layers of protection against today’s ever-evolving cyberthreats, at our newly discounted annual price of $39.99 your first year.*
Disclaimers and references:
1 WIRED Magazine, “The CIA secret to cybersecurity that no one seems to get,” December 20, 2015.
Editorial note: Our articles provide educational information for you. Norton LifeLock offerings may not cover or protect against every type of crime, fraud, or threat we write about. Our goal is to increase awareness about cyber safety. Please review complete Terms during enrollment or setup. Remember that no one can prevent all identity theft or cybercrime, and that LifeLock does not monitor all transactions at all businesses.
Norton by Symantec is now Norton LifeLock. LifeLock™ identity theft protection is not available in all countries.
Copyright © 2019 Symantec Corporation. All rights reserved. Symantec, the Symantec logo, the Checkmark logo, Norton, Norton by Symantec, LifeLock and the LockMan logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the United States and other countries. Firefox is a trademark of Mozilla Foundation. Android, Google Chrome, Google Play and the Google Play logo are trademarks of Google, LLC. Mac, iPhone, iPad, Apple and the Apple logo are trademarks of Apple Inc., registered in the United States and other countries. App Store is a service mark of Apple Inc. Microsoft and the Windows logo are trademarks of Microsoft Corporation in the United States and/or other countries. The Android robot is reproduced or modified from work created and shared by Google and used according to terms described in the Creative Commons 3.0 Attribution Licence. Other names may be trademarks of their respective owners.