Security Terms Glossary 2025

Comprehensive cybersecurity definitions covering AI threats, passwordless authentication, post-quantum cryptography, and the latest 2025 security trends. Updated with verified statistics and expert sources.

🤖 AI & Machine Learning Security

AI-Powered Attacks

Sophisticated cyberattacks leveraging artificial intelligence to create convincing phishing emails, deepfakes, and adaptive malware that can evade traditional security measures. Nation-state actors and cybercriminals increasingly use AI to craft highly sophisticated campaigns.

Related tools: Security Best Practices

Deepfakes

AI-generated realistic fake images, videos, and audio used for impersonation scams and social engineering attacks. These technologies enable criminals to create convincing fake communications, allowing them to pose as trusted individuals or organizations.

Related tools: Security Best Practices

Autonomous Malware

Self-adapting malicious software that can modify its behavior in real-time based on the target environment. 91% of security experts expect AI-powered attacks to surge this decade, making autonomous malware a critical emerging threat.

Related tools: Breach Response Guide

Model Poisoning

Attack method where adversaries inject malicious data into AI training datasets to compromise the model's integrity and behavior, potentially causing misclassification or system failures.

Prompt Injection

Security vulnerability where attackers manipulate AI system inputs to extract sensitive information or cause unintended behaviors in large language models and chatbots.

GenAI Data Leakage

Unintentional exposure of sensitive information through generative AI tools. Studies show 27.4% of data inputted into AI tools in 2024 was considered sensitive, creating significant privacy and security risks.

🔐 Passwordless Authentication

FIDO Authentication

Fast Identity Online standard enabling passwordless authentication using cryptographic keys stored on user devices. Google reports over 800 million accounts support passkeys with 50% faster login speeds compared to traditional passwords.

Related tools: Password Generator | 2FA Setup

WebAuthn

W3C web standard that enables strong authentication using public key cryptography, supporting biometrics, security keys, and platform authenticators for secure, passwordless login experiences.

FIDO2

Latest FIDO Alliance standard combining WebAuthn and CTAP protocols. Over 95% of iOS and Android devices are passkey-ready in 2025, enabling widespread passwordless adoption.

Passwordless Authentication

Authentication methods eliminating traditional passwords through biometrics, device certificates, or cryptographic keys. 50% of US enterprises have adopted some form of passwordless authentication, saving almost $2 million compared to standard password-based systems.

Related tools: Password Managers | Best Practices

Biometric Spoofing

Techniques to fool biometric authentication systems using fake fingerprints, photos, or synthetic biometric data. As biometric adoption grows, understanding these attack vectors becomes crucial.

Platform Authenticator

Built-in authentication capability in devices (like Touch ID, Face ID, Windows Hello) that can be used for FIDO authentication without requiring external security keys.

🅰️ A-D

Advanced Persistent Threat (APT)

A prolonged and targeted cyber attack where an intruder gains access to a network and remains undetected for an extended period. 2025 data shows a 150% increase in China-nexus activity, with the fastest recorded eCrime breakout time now at just 51 seconds. APTs typically target high-value organizations using increasingly sophisticated techniques including AI-generated social engineering.

Related tools: Breach Response Guide

Authentication

The process of verifying the identity of a user, device, or system. Common methods include passwords, biometrics, smart cards, and multi-factor authentication. Modern authentication is moving toward passwordless solutions like passkeys and FIDO2.

Related tools: 2FA Guide | Password Generator

Authorization

The process of granting or denying access to specific resources or actions after authentication has been completed. Determines what an authenticated user can do.

Backdoor

A hidden entry point into a system that bypasses normal authentication. May be intentionally created by developers or maliciously installed by attackers.

Biometrics

Authentication method using unique biological characteristics such as fingerprints, facial recognition, iris scans, or voice patterns. Increasingly integrated with passkey technology for passwordless authentication.

Related tools: 2FA Guide

Botnet

A network of compromised computers (bots) controlled remotely by cybercriminals to perform coordinated attacks, send spam, or mine cryptocurrency.

Brute Force Attack

A trial-and-error method used to obtain passwords, encryption keys, or login credentials by systematically trying all possible combinations until the correct one is found.

Related tools: Password Strength Checker

Certificate Authority (CA)

A trusted entity that issues digital certificates used to verify the identity of websites, organizations, or individuals in online communications.

Credential Stuffing

A type of cyber attack where stolen account credentials are used to gain unauthorized access to user accounts through large-scale automated login requests.

Cryptography

The practice of securing information by converting it into an unreadable format (encryption) that can only be decoded by authorized parties with the correct key. Post-quantum cryptography is becoming essential as quantum computing advances.

Data Breach

An incident where sensitive, protected, or confidential data is accessed, disclosed, or stolen by unauthorized individuals.

Related tools: Breach Response Guide

DDoS (Distributed Denial of Service)

An attack that attempts to disrupt normal traffic of a targeted server by overwhelming it with a flood of internet traffic from multiple sources.

🅴 E-H

Encryption

The process of converting readable data into an unreadable format using mathematical algorithms and encryption keys to protect information from unauthorized access.

End-to-End Encryption (E2EE)

A communication system where only the communicating parties can read the messages. Messages are encrypted on the sender's device and only decrypted on the recipient's device.

Exploit

A piece of software, code, or sequence of commands that takes advantage of a vulnerability in a system to cause unintended behavior or gain unauthorized access.

Firewall

A network security device that monitors and controls incoming and outgoing network traffic based on predetermined security rules to prevent unauthorized access.

Hash Function

A mathematical algorithm that converts input data into a fixed-size string of characters. Used for password storage, data integrity verification, and digital signatures.

Honeypot

A security mechanism that creates a decoy system or network to attract and detect attackers, gathering intelligence about their methods and tools.

🅸 I-L

Identity Theft

The fraudulent acquisition and use of someone's personal information, typically for financial gain or to commit other crimes.

Incident Response

The structured approach to addressing and managing the aftermath of a security breach or cyber attack, aimed at limiting damage and recovery time.

Intrusion Detection System (IDS)

A security tool that monitors network or system activities for malicious activities or policy violations and alerts administrators of potential threats.

Keylogger

Software or hardware that records keystrokes made on a computer, often used maliciously to steal passwords, credit card numbers, and other sensitive information.

Logic Bomb

Malicious code that is triggered by specific conditions or events, such as a particular date, user action, or system state.

🅼 M-P

Malware

Malicious software designed to damage, disrupt, or gain unauthorized access to computer systems. Includes viruses, worms, trojans, ransomware, and spyware.

Man-in-the-Middle (MITM)

An attack where the attacker secretly intercepts and potentially alters communications between two parties who believe they are communicating directly.

Multi-Factor Authentication (MFA)

A security method that requires users to provide two or more verification factors to gain access to an account or system. Adoption is rising with 74% of US respondents using 2FA for most workplace accounts. However, organizations are increasingly moving toward passwordless alternatives like passkeys for better security and user experience.

Related tools: Complete 2FA Guide | Security Best Practices

Network Segmentation

The practice of dividing a network into smaller subnetworks to improve security, performance, and manageability by limiting access between segments.

Patch

A software update designed to fix bugs, vulnerabilities, or improve functionality in existing software or operating systems.

Penetration Testing

A simulated cyber attack conducted by security professionals to evaluate the security of a system and identify vulnerabilities.

Phishing

A fraudulent attempt to obtain sensitive information by disguising as a trustworthy entity in electronic communication, typically email.

Public Key Infrastructure (PKI)

A framework that manages digital keys and certificates to enable secure communication and authentication in digital environments.

🅰️ Q-T

Quarantine

The isolation of suspected malicious files, emails, or network traffic to prevent them from causing harm while they are analyzed.

Ransomware

Malicious software that encrypts a victim's files and demands payment (ransom) for the decryption key to restore access to the data.

Ransomware-as-a-Service (RaaS)

Evolution of ransomware where cybercriminal groups provide affiliates with easy-to-use toolkits for a cut of the profits. This model has reduced barriers to entry, creating a surge in attacks. The average cost of recovering from a ransomware attack now averages $2.73 million in 2025, making offline backups and network segmentation critical defense strategies.

Related tools: Breach Response Guide | Security Best Practices

Risk Assessment

The process of identifying, analyzing, and evaluating security risks to determine their potential impact and likelihood of occurrence.

Rootkit

Malicious software designed to maintain persistent access to a computer while hiding its presence from the operating system and security software.

Salt

Random data added to a password before hashing to protect against rainbow table attacks and ensure unique hashes for identical passwords.

Social Engineering

The psychological manipulation of people to divulge confidential information or perform actions that compromise security.

Spear Phishing

A targeted phishing attack directed at specific individuals or organizations, often using personal information to appear more credible.

SQL Injection

A code injection technique that exploits vulnerabilities in web applications to manipulate or access database information.

Threat Intelligence

Evidence-based knowledge about existing or emerging threats that helps organizations make informed security decisions.

Trojan Horse

Malicious software that appears to be legitimate but performs harmful activities when executed, often providing unauthorized access to attackers.

🅿️ U-Z

User Access Control (UAC)

A security feature that helps prevent unauthorized changes to the operating system by prompting for permission or administrator credentials.

Virtual Private Network (VPN)

A secure connection between a device and a network over the internet that encrypts data and hides the user's IP address.

Vulnerability

A weakness in a system, application, or network that could be exploited by attackers to gain unauthorized access or cause damage.

Whaling

A targeted phishing attack specifically aimed at high-profile individuals such as executives or government officials.

Zero-Day

A vulnerability in software that is unknown to the vendor and has no available patch, making it particularly dangerous as there's no defense.

Zero Trust

A security model that requires verification for every user and device attempting to access network resources, regardless of their location.

⛓️ Supply Chain Security

Software Bill of Materials (SBOM)

Detailed inventory of software components and dependencies used in applications. The US government now mandates SBOM for suppliers to improve transparency and accountability in software supply chains.

Supply Chain Poisoning

Injection of malicious code into legitimate software during development or distribution. ReversingLabs detected a 1300% increase in threats circulating via open-source package repositories between 2020 and 2023.

Third-Party Risk

Security vulnerabilities introduced through vendors, suppliers, and business partners. These risks have become a major cause of data breaches, requiring comprehensive vendor risk management programs.

Related tools: Breach Response | Security Guidelines

Dependency Confusion

Attack where malicious packages with similar names to internal dependencies are uploaded to public repositories to trick automated systems into downloading compromised code.

Code Signing

Digital signature process ensuring software authenticity and integrity, critical for preventing supply chain tampering and establishing trust in software distribution.

🛡️ Zero Trust & Modern Architecture

Zero Trust Architecture

Security model requiring verification for every user and device attempting to access network resources, regardless of their location. This approach is critical as cyber threats grow more sophisticated and attack surfaces expand with remote work and IoT devices.

Identity Fabric

Product-agnostic integrated set of identity tools and services that forms an essential component of Identity-First security strategy. When implemented correctly, it provides relief to security professionals managing multicloud environments.

SASE (Secure Access Service Edge)

Cloud-native security architecture combining network security functions with WAN capabilities at the edge, providing secure access regardless of user location.

XDR (Extended Detection and Response)

Integrated security platform providing holistic threat detection and response across multiple security layers, improving visibility and reducing response times.

Microsegmentation

Network security technique that creates secure zones in data centers and cloud environments to isolate workloads and limit lateral movement in case of breach.

📱 IoT & 5G Security

IoT Security

Protection measures for Internet of Things devices. IoT market expected to reach $77 billion in 2025, with many devices lacking adequate security features. Critical considerations include device authentication, encryption, and regular security updates.

5G Security Risks

Security vulnerabilities in 5G networks affecting industrial control systems and real-time applications. These include increased attack surfaces, network slicing vulnerabilities, and edge computing security challenges.

Device Identity Management

System for uniquely identifying, authenticating, and managing IoT devices throughout their lifecycle. Essential for maintaining security in large-scale IoT deployments.

Edge Computing Security

Security considerations for computing resources located at the edge of networks, closer to IoT devices and users. Includes securing edge nodes, data processing, and communications.

🔍 Incident Response & Forensics

Cyber Threat Intelligence

Evidence-based knowledge about threats used for informed security decisions. Critical for identifying new adversary tradecraft and staying ahead of emerging threats.

Related tools: Breach Response Guide

Digital Forensics

Scientific process of investigating digital devices and data to reconstruct cyber incidents and gather legal evidence. Essential for understanding attack methods and supporting legal proceedings.

Security Orchestration

Automated coordination of security tools and processes. SOC automation helps manage growing alert volumes and improves response times to security incidents.

Threat Hunting

Proactive security practice of searching through networks and datasets to detect advanced threats that evade existing security solutions.

🔢 Numbers & Symbols

2FA (Two-Factor Authentication)

A security process that requires users to provide two different authentication factors to verify their identity.

Related tools: 2FA Setup Guide

3DES (Triple Data Encryption Standard)

A symmetric encryption algorithm that applies the DES cipher algorithm three times to each data block.

404 Error

An HTTP status code indicating that the requested webpage could not be found on the server.

51 Seconds

The fastest recorded eCrime breakout time in 2025, showing how quickly attackers can move laterally through compromised networks.

📝 Common Security Acronyms

📚 Related Security Guides