What is an attack vector?
In cybersecurity, an attack vector is the specific path or method a threat actor uses to breach your network or system.
Cybercriminals exploit a system's weaknesses to gain unauthorized access to sensitive data. To infiltrate your network, they don't just go after the hardware and network flaws, but also the people within your organization.
Common attack vectors include;
- Man-in-the-middle
- Compromised credentials
- Weak and stolen credentials
- Malicious insider
- Missing or poor encryption
- Misconfiguration
- Ransomware
- Phishing
- Spear-phishing
- Zero-day vulnerability
- Physical theft
- Misused trust relationships, etc.