A unique hardware identifier permanently assigned to network interface cards by manufacturers. MAC addresses enable device identification on local networks, though attackers can spoof them to bypass basic access controls.

Computer algorithms that improve performance through data analysis without explicit programming for each scenario. In cybersecurity, machine learning detects anomalies and identifies threats by recognizing patterns in vast datasets.

Malicious code embedded in document macros that executes when users open infected files. Macro viruses spread through email attachments and shared documents, exploiting office application automation features.

Small programs automatically downloaded and executed in web browsers or applications that perform unauthorized actions. Malicious applets exploit browser vulnerabilities to install malware or steal data without user knowledge.

Software, firmware, or scripts intentionally designed to damage systems, steal data, or disrupt operations. Malicious code includes viruses, worms, Trojans, ransomware, and spyware that compromise confidentiality, integrity, or availability.

Companies that remotely manage clients' IT infrastructure, security, and end-user systems under subscription agreements. MSPs provide ongoing maintenance, monitoring, and support, allowing organizations to outsource technology management.

Security model where the system enforces access decisions based on classification labels assigned to users and resources. Users cannot change MAC permissions, ensuring consistent policy enforcement across the organization.

An attack where adversaries secretly intercept and potentially modify communications between two parties who believe they're communicating directly. MitM attacks compromise encryption, steal credentials, and enable eavesdropping on sensitive conversations.

An intrusion where attackers impersonate legitimate users or systems to gain unauthorized access. Masquerade attacks exploit stolen credentials or spoofed identities to bypass authentication controls.

A cryptographic hash function producing 128-bit values from input data. MD5 is now considered insecure due to collision vulnerabilities and should be replaced with stronger algorithms like SHA-256.

Probability models evaluating the likely impact of security actions within specific environments. MOE helps organizations assess whether defensive measures achieve intended protection objectives.

Network security strategy creating isolated zones within data centers and cloud environments to limit lateral movement. Microsegmentation applies granular policies restricting traffic between workloads based on Zero Trust principles.

Actions taken to reduce the likelihood or impact of security risks through implementing appropriate controls. Mitigation prioritizes threats based on risk assessments and available resources for remediation.

Software platforms managing, monitoring, and securing employee mobile devices accessing corporate resources. MDM enforces security policies, deploys applications, and enables remote data wiping for lost or stolen devices.

The widespread use of identical software, operating systems, or configurations across many systems. Monocultures amplify attack impact since vulnerabilities affecting one system compromise all similarly configured systems.

A 1988 worm program that spread across ARPANET, disrupting thousands of hosts and demonstrating the vulnerability of networked systems. The Morris Worm highlighted the need for coordinated incident response.

Security strategy continuously changing attack surfaces to increase adversary effort required for reconnaissance and exploitation. Moving target defenses randomize configurations, addresses, or system properties to complicate attacks.

Network transmission method sending data from one source to multiple specific recipients simultaneously. Multicast efficiently distributes content to groups without consuming bandwidth for individual connections.

Using multiple cloud service providers like AWS, Azure, and Google Cloud within a single architecture. Multi-cloud strategies avoid vendor lock-in but require consistent security policies across diverse platforms.

Authentication requiring two or more independent verification methods such as passwords, tokens, biometrics, or one-time codes. MFA significantly reduces credential theft risks by requiring attackers to compromise multiple factors.

Network configurations connecting directly to two or more Internet service providers. Multi-homing provides redundancy and load balancing but requires careful routing configuration to prevent security gaps.

Combining multiple signals from different sources for transmission over a single communication channel. Multiplexing increases bandwidth efficiency but requires proper segmentation to prevent cross-contamination of data streams.