Computer security

protection of computer systems and networks from theft, damage, misuse or data leak

upright=1.35|thumb|This CAPTCHA (GIMPY-R, c. 2005) of "smwm" obscures its message from computer interpretation by twisting the letters and adding a slight background color gradient.

Cybercrime encompasses a wide range of criminal activities that are carried out using digital devices and/or networks. It has been variously defined as "a crime committed on a computer network, especially the Internet; Cybercriminals may exploit vulnerabilities in computer systems and networks to gain unauthorized access, steal sensitive information, disrupt services, and cause financial or reputational harm to individuals, organizations, and governments.

cyberattack that utilizes a recently-publicized computer software vulnerability on systems which are yet to be mitigated

intentional or unintentional release of secure information to an untrusted environment

broad set of policies, technologies, applications, and controls utilized to protect virtualized IP, data, applications, services, and the associated infrastructure of cloud computing

machine learning technique that attempts to prevent models being fooled by supplying deceptive input

online sexual exploitation

process of securing a system by reducing its surface of vulnerability, which is larger when a system performs more functions; in principle a single-function system is more secure than a multipurpose one

data that remains after its deletion

security.txt is an accepted standard for website security information that allows security researchers to report security vulnerabilities easily. The standard prescribes a text file named security.txt in the well known location, similar in syntax to robots.txt but intended to be machine and human readable, for those wishing to contact a website's owner about security issues. security.txt files have been adopted by Google, GitHub, LinkedIn, and Facebook.

operating modes for computers

practice of avoiding accidental introduction of security vulnerabilities while developing software

censorship circumvention technique

computer security exercise in which "flags" are hidden in purposefully vulnerable programs or websites

firmware and software that runs on all modern Intel CPUs at a higher level than user-facing operating system

cybersecurity directive of the European Union

branch of the German armed forces

cybersecurity regulation in the EU

seccomp (short for secure computing) is a computer security facility in the Linux kernel. seccomp allows a process to make a one-way transition into a "secure" state where it cannot make any system calls except exit(), sigreturn(), read() and write() to already-open file descriptors. Should it attempt any other system calls, the kernel will either just log the event or terminate the process with SIGKILL or SIGSYS. In this sense, it does not virtualize the system's resources but isolates the process from them entirely.

software bug that can be exploited to gain unauthorized access or privileges on a computer system

links two network-restricted computers

computer accessible to members of the public, such as in a library

branch of computer security related to the automotive context

Users' disregard for IT security

In computer security, camfecting is the process of attempting to hack into a person's webcam and activate it without the webcam owner's permission. The remotely activated webcam can be used to watch anything within the webcam's field of vision, sometimes including the webcam owner themselves. Camfecting is most often carried out by infecting the victim's computer with a virus that can provide the hacker access to their webcam. This attack is specifically targeted at the victim's webcam, and hence the name camfecting, a portmanteau of the words camera and infecting.

operating systems, that are focused on anonymous, privacy and security

identification and authentication device

A crackme is a small computer program designed to test a programmer's reverse engineering skills. Crackmes are made as a legal way to crack software, since no intellectual property is being infringed.

cyber-security challenge and mind sport in hacking

conventional name for a type of user account in Unix systems

security problem in which a legitimate, more privileged computer program is tricked by another program into misusing its authority on the system

engineering discipline