Cybersecurity Glossary

The opposite of overfitting, where a model is too simple and fails to capture the underlying patterns or complexities of the data.

Unified threat management (UTM) refers to a comprehensive approach to network security that combines multiple security functions into a single integrated solution. A UTM appliance or device typically includes features such as firewall, intrusion detection and prevention, antivirus and anti-malware, virtual private networking (VPN), content filtering, and data loss prevention (DLP) capabilities. UTM solutions aim to simplify security management, streamline deployment, and provide centralized visibility and control over network security. By consolidating security functionalities into one platform, UTM helps organisations enhance their security posture and reduce complexity.

An unpatched vulnerability refers to a security weakness or flaw in software, firmware, or hardware that has been discovered but remains unaddressed by an official patch or update from the vendor or developer. Unpatched vulnerabilities can be exploited by attackers to gain unauthorised access, execute malicious code, or perform other types of malicious activities. Organisations and users are at risk until a patch or mitigation is released to address the vulnerability. It is crucial to regularly apply security patches and updates to mitigate the risk of exploitation from unpatched vulnerabilities.

A machine learning approach where models learn from unlabeled data, seeking patterns or structures within the data without explicit labels or guidance. It is used for tasks like clustering, dimensionality reduction, and anomaly detection.

User access control, also known as access control or user Authorisation, is the process of granting or restricting user access to resources, systems, or data based on their identity, role, and permissions. User access control mechanisms ensure that users can only access the information and perform actions that are necessary for their job responsibilities and level of authority. User access control involves implementing authentication mechanisms (such as passwords or biometrics) to verify user identity and Authorisation mechanisms (such as access control lists or role-based access control) to define and enforce user permissions. User access control is a fundamental aspect of maintaining the confidentiality, integrity, and availability of data and resources.

User awareness training, also known as security awareness training or cybersecurity training, is the process of educating and informing users about potential security risks, best practices, and policies to promote safe and secure computing practices. User awareness training aims to raise awareness of common threats, such as phishing, social engineering, and malware, and provide users with the knowledge and skills to recognize and respond to security incidents effectively. User awareness training often covers topics such as password security, email hygiene, safe web browsing, data protection, and incident reporting. By empowering users with security knowledge, organisations can significantly reduce the risks associated with human error and improve overall security posture.

User behaviour analytics (UBA), also known as user and entity behaviour analytics (UEBA), is an approach to cybersecurity that leverages advanced analytics and machine learning techniques to detect and analyse patterns of user behaviour to identify potential security threats or insider threats. UBA solutions collect and analyse data from various sources, such as log files, network traffic, and user activity logs, to establish baseline behaviour profiles for individual users or entities. By monitoring deviations from normal behaviour patterns, UBA can detect anomalies, suspicious activities, or indicators of compromise. UBA helps organisations proactively identify and respond to security incidents and enhance threat detection capabilities.