Ask the Chatbot Games & Quizzes History & Society Science & Tech Biographies Animals & Nature Geography & Travel Arts & Culture Money Videos
cyberattack
Table of Contents
References & Edit History Related Topics
Images
Website for Pegasus spyware The Love Bug virus email greeting
Related Questions
Read Next
Internet http://www blue screen. Hompepage blog 2009, history and society, media news television, crowd opinion protest, In the News 2009, breaking news
Who Invented the Internet?
Technical insides of a desktop computer
5 Components of Information Systems
Bonnie Parker mockingly points shotgun at Clyde Barrow. American bank robbers and lovers Clyde Barrow (1909 - 1934) and Bonnie Parker (1911 -1934), popularly known as Bonnie and Clyde, circa 1933. criminal, thief, robbery team
7 Notorious Women Criminals
Programming computer abstract
Influential Computer Programming Languages
Screen with https for internet security. (encryption, privacy, websites)
Inventions that Helped Shape How We Interact with Knowledge and Information
Discover
The Battle of New Orleans, by E. Percy Moran, c. 1910. Andrew Jackson, War of 1812.
26 Decade-Defining Events in U.S. History
An ancient egyptian hieroglyphic painted carving showing the falcon headed god Horus seated on a throne and holding a golden fly whisk. Before him are the Pharoah Seti and the goddess Isis. Interior wall of the temple to Osiris at Abydos, Egypt.
11 Egyptian Gods and Goddesses
A mug shot taken by the regional Colombia control agency in Medellin
Pablo Escobar: 8 Interesting Facts About the King of Cocaine
A Factory Interior, watercolor, pen and gray ink, graphite, and white goache on wove paper by unknown artist, c. 1871-91; in the Yale Center for British Art. Industrial Revolution England
Inventors and Inventions of the Industrial Revolution
Young boys working in a thread spinning mill in Macon, Georgia, 1909. Boys are so small they have to climb onto the spinning frame to reach and fix broken threads and put back empty bobbins. Child labor. Industrial revolution
The Rise of the Machines: Pros and Cons of the Industrial Revolution
Election - Button that says Vote. Badge pin stars and stripes politics campaign
Why Are U.S. Elections Held on Tuesdays?
Black widow spider
9 of the World’s Deadliest Spiders
Website for Pegasus spyware
Website for Pegasus spyware Although the spyware was touted as cyberdefense, it was used to conduct mass surveillance, blurring the line between cybercrime and preventive measures.

cyberattack

verifiedCite
While every effort has been made to follow citation style rules, there may be some discrepancies. Please refer to the appropriate style manual or other sources if you have any questions.
Select Citation Style
Share
Share to social media
URL
https://mainten.top/topic/cyberattack
Feedback
Corrections? Updates? Omissions? Let us know if you have suggestions to improve this article (requires login).
Thank you for your feedback

Our editors will review what you’ve submitted and determine whether to revise the article.

print Print
Please select which sections you would like to print:
verifiedCite
While every effort has been made to follow citation style rules, there may be some discrepancies. Please refer to the appropriate style manual or other sources if you have any questions.
Select Citation Style
Share
Share to social media
URL
https://mainten.top/topic/cyberattack
Written by
Dylan Shulman
Dylan Shulman was an Editorial Intern at Encyclopædia Britannica in 2023 and 2024. He graduated in 2023 with a B.A. in journalism and French from the University of Maryland.
Dylan Shulman
Fact-checked by
The Editors of Encyclopaedia Britannica
Encyclopaedia Britannica's editors oversee subject areas in which they have extensive knowledge, whether from years of experience gained by working on that content or via study for an advanced degree. They write new content and verify and edit content received from contributors.
The Editors of Encyclopaedia Britannica
Last Updated: Article History
Related Topics:
computer
Internet
malware
denial of service attack
phishing
See all related content →

News

Lack of investment leaving firms open to cyber attack - PwC Oct. 22, 2024, 9:36 PM ET (Irish Times)
U.S. Indicts 2 Linked to Oct. 7 Cyberattack on Israeli Warning System Oct. 18, 2024, 9:11 AM ET (New York Times)
Cybersecurity head says there's no chance a foreign adversary can change US election results Oct. 2, 2024, 6:07 PM ET (AP)

cyberattack, deliberate and malicious attempt to gain unauthorized access to a digital system. Cyberattacks can affect computers, smartphones, or other Internet-connected devices. Cybercriminals’ main goal is often to steal money, personal information, credentials, intellectual property, or otherwise valuable information. Attackers may also aim to disrupt or cripple the targeted system. Cyberattacks are often a precursor to more-serious cybercrime, such as identity theft, invasion of privacy, and fraud. Such attacks occur every day, and more than half of them result in damages of $500,000 or more each. The average cost of a data breach is $4.35 million, and some estimates indicate that cybercrime will cost the world $10.5 trillion annually by 2025. The most advanced cyberattacks have disrupted industrial machinery, transportation, and Internet service to entire regions; they have even left hundreds of thousands of people without electricity.

Cyberattacks present a significant threat to computer systems not only because of the damage they can cause but also because of their low cost of entry. With mastery over certain software, one person could launch an attack against an entire country. Moreover, attackers can easily hide their identity, location, and motive. Cyberdefense measures must repeatedly deter attacks that may differ in scope and method, whereas a cyberattack needs to succeed only once; an unprotected server can face hundreds of attacks a day. The line between cyberdefense and cyberattack, however, sometimes blurs. For example, Pegasus spyware was explicitly designed for national security and law enforcement but was used to track and monitor influential individuals without their knowledge.

Both individuals and organizations can perpetrate cyberattacks, but such attacks differ from cyberwar, which is typically waged between countries. Cyberwar can include physical attacks against digital infrastructure (such as destroying communications systems or hardware) in addition to cyberattacks.

Structure of cyberattacks

Cyberattacks target a system’s syntactic layer, its semantic layer, or both. Syntactic cyberattacks center on software and, in most cases, involve malware (a portmanteau of malicious and software). Semantic cyberattacks attempt to trick victims into providing valuable information or access to valuable systems, using a strategy known as social engineering. A common example of social engineering is phishing—the practice of sending fraudulent emails that impersonate trustworthy contacts to ask for personal information.

Cyberattacks generally operate in four broad phases. Attackers start with reconnaissance, during which they probe for weaknesses and gather information within a target’s system. They may use social engineering to obtain private information and may consider aligned targets, such as partners, customers, or suppliers. During this stage, the attackers typically research how to breach the system and whether that will require creating or buying malware or conducting trials.

The second phase is delivery, during which the attackers implement a plan to infiltrate the target. Common methods include using an infected USB, creating a fake website, or planting a link within an email. Attackers may even resort to more-traditional forms of crime, such as bribery or blackmail.

The third phase of a cyberattack is breaching. If the infiltration plan succeeds, the attackers gain access to the target’s system and establish a digital presence.

Are you a student?
Get a special academic rate on Britannica Premium.
Subscribe

The fourth phase is the attack. Now that the attackers have gained access to their target’s system, they may attempt to breach more-valuable networks or to establish a more permanent presence. They may also attempt to disable system security measures. The attackers can then proceed with their plans: depending on the target, they may be interested in sending bank payments, disrupting or crippling business operations, stealing intellectual property or sensitive information, or otherwise changing the network. They can disrupt the system to gain remote control over it, perhaps even connecting it to other compromised devices.

Advanced attackers typically vacate the system and remove evidence of their presence after they have achieved their goals; they may even disguise their work as someone else’s. In some cases, they leave behind a back door for future access or to sell access to other cybercriminals. Some attackers, however, wreak havoc merely to attract attention to their success.

Types of cyberattacks

Cyberattacks can be classified into two categories: untargeted and targeted. Untargeted attacks aim to affect as many devices or services as possible. For example, infiltrators sometimes use “water holing,” in which a web page is created or compromised and visitors are then attacked as they access the page. Another example is scanning, in which attackers systematically attempt to find vulnerabilities in a system, often aiming for points of entry.

Targeted cyberattacks are tailored to a specific individual or organization. The culprit is often external, but internal actors can also compromise a system.

Malware

The Love Bug virus email greeting
The Love Bug virus email greetingThe infamous Love Bug, or ILOVEYOU, worm appeared as an email claiming to have a love letter as an attachment and automatically sent the malware to a victim's entire address book.

Malware is an umbrella term for software programs used in cyberattacks, typically installed on victims’ devices when they interact with a dangerous link or email. For example, electronic games or applications from a third-party service may hide malware within their software packages. Attackers may also try “baiting,” a strategy in which malware is left in a public online space, such as a web page. Malware includes viruses, worms, Trojans, rootkits, spyware, and adware. Scareware uses false alerts to pressure a user into downloading further malware or into providing valuable information. Ransomware, also called cryptoviral extortion, blocks access to a digital asset or device until the owner pays a ransom. Payments have been as much as $40 million. Ransomware is the second most common form of cyberattack; in fact, there are organizations that sell ransomware attacks as a service, enabling others to conduct such attacks.

Software exists to detect and combat malware, and operating systems are continually updated to minimize weaknesses. However, malware has advanced just as quickly as cyberdefense strategies and tools.

Phishing

Phishing is a common social engineering tactic in which cyberattackers impersonate trusted sources, typically via email, to steal valuable data or to install malware. Spear phishing is the term for sending such emails to specific targets in an organization; whale phishing is a subcategory that targets company executives. Business email compromise scams occur when cybercriminals impersonate an executive or a business associate and ask that money be wired to a specific account.

Denial-of-service attacks

A denial-of-service (DoS) attack overwhelms its target with traffic and thus prevents legitimate use. Distributed denial-of-service (DDoS) attacks occur when the source of the traffic is not a single entity but many, typically involving the use of a botnet. A botnet is a network of connected devices—termed zombie computers—that are all infected with malware, allowing attackers to use them for their own purposes without owner authorization. The largest discovered botnet comprised nearly two million computers.

Man-in-the-middle attacks

Man-in-the-middle (MitM) attacks, sometimes called eavesdropping attacks, occur when attackers intercept communications either between people or between an individual and a server. Unsecured public networks provide a relatively easy environment for attackers to spy on and intercept Internet traffic. Session hijacking attacks are a subcategory of MitM attacks in which attackers match their IP address to that of a legitimate user, thereby gaining the same level of access on the user’s server.

Other types of cyberattacks

  • Cross-site scripting (XSS) occurs when an attacker infects a website, often through JavaScript code, which typically involves sending the target to a different site or stealing targeted data.
  • Account compromise involves attackers hijacking a legitimate user’s access. Attackers may have gathered passwords from a phishing scam or bought them on the dark web. Some attackers use software to bypass password encryption or create programs to test potential passwords.
  • Supply chain attacks occur when attackers hijack a third-party vendor used by the target in order to infiltrate the system. Depending on the extent of the attack and the size of the vendor, attackers could access multiple targets.

Cyberattack prevention

Simply ensuring that all software is up-to-date and avoiding unknown links can be an effective strategy to prevent cyberattacks. Identity and access management strategies, such as multifactor authentication, strong passwords, and virtual private networks (VPNs), provide added levels of security. Firewalls and Internet encryption can prevent bad actors from interacting with a network. Additionally, data loss prevention tools can monitor security threats and aid in backing up important data in the event of a breach.

Organizations can work to deter cyberattacks by educating employees on cybersecurity tips, enlisting third-party security experts, or investing in an internal cybersecurity team. Such teams can take measures to root out system weaknesses, detect cyberattacks, and create response plans in the aftermath of an attack. Although it is impossible to be completely secure from cyberattacks, such measures can help to lessen potential damage.

Dylan Shulman