THREADS AND ATTACKSThreat is an object, person, or other entity which represents a constant danger to an asset. To make sound decisions about information security, management should be informed of the several threats facing the organization. By examining each and every threat category, management protects information effectively through policy, training, and technology controls.The categorization of thread scheme is shown in the Table given below which consists of 12 general categories which represent a clear and present threat to an organization’s people, information, and systems.
Attack is act or action which exploits vulnerability (that is, an identified weakness) in controlled system. The following basic types of attacks