Glossary
CVE / CVSS
The CVE gives a unique number to each known flaw; the CVSS gives it a severity score.
A CVE is the official identifier of a known security flaw, so that everyone is talking about the same thing. The CVSS assigns it a severity score, from 0 to 10, based on how easy it is to exploit and its impact. This score helps with prioritisation, but must be put back into context: a "critical" flaw on a non-exposed system may be less urgent than another.
See also
BotnetA network of hacked machines, controlled remotely to carry out mass attacks.DeepfakeA fake video or voice, created by artificial intelligence, imitating a real person very realistically.Shadow ITThe tools and applications used at work without the agreement or knowledge of the IT department.BYODUsing your personal devices (phone, computer) for work, with the risks that entails.