Cyber Security Glossary

A security patch is software that corrects errors in computer software code. Security patches are issued by software companies to address vulnerabilities discovered in the company’s product.  Vulnerabilities can also be found in the aftermath of a cyberattacker exploiting a vulnerability of an operating system – a vulnerability the software manufacturer was not previously aware of.  Applying security patches that respond to the latest threats, enhances device security.

Social engineering is the psychological manipulation of individuals to trick them into divulging confidential information or performing actions that compromise security.    It is often called 'human hacking' because it exploits psychological vulnerabilities rather than technical ones.

Spear phishing is a highly targeted cyberattack where a malicious actor crafts personalised messages, often emails, to trick a specific individual or organization into divulging sensitive information or performing actions that benefit the attacker. Unlike general phishing that casts a wide net, spear phishing relies on extensive research of the target to make the communication appear legitimate and trustworthy, often by impersonating a known contact or authority figure.