Cybersecurity Glossary

User Datagram Protocol. A connectionless transport protocol that sends data without establishing a connection, offering speed at the cost of reliability.

A social engineering technique where malicious USB devices are left in public places, exploiting curiosity to install malware when plugged into computers.

Universal Asynchronous Receiver-Transmitter. A serial communication protocol often exposed on IoT device debug headers, providing console access for analysis.

An email security technique that modifies links in emails to route through a security service that scans the destination for threats at click time.

A SQL injection technique that uses the UNION SQL operator to combine results from the injected query with the original query.

Techniques for circumventing Windows User Account Control to execute programs with elevated privileges without triggering a UAC prompt.

Malware that infects the Unified Extensible Firmware Interface, persisting below the operating system and surviving disk replacement.

Attacks delivered through USB devices including rubber duckies, USB killers, rogue charging cables, and infected flash drives.

A vulnerability where an application accepts untrusted input that causes redirection to an external URL without validation.

A memory corruption vulnerability where a program continues to use a pointer after the memory it references has been freed.