Which Of The Following Would Be Considered A Vulnerability?

Which of the following would be considered a vulnerability?

• Degradation in performance of the website.
• A sudden drop in a stock price.
• Files aren’t scanned for malware.
• Payroll information.
• Privilege level abuse.

Answer:  Files that aren’t scanned for malware are the vulnerability in the given option.

What is vulnerability?

Vulnerability is the point of weakness where you can get attacked by something. There are many forms of vulnerabilities. In our house not having the bars or the security alarm is a vulnerability. Because of this an unknown person can easily enter our home and cause damage.it is a threat to our protection. 

Some other examples are listed below:

• A door without the locks system.
• Lack of security alarms, cameras.
• A defect in the firewalls allows the hacker to enter into our system.

These all are the vulnerability that hurt or damage your business and many other important assets. Let’s discuss the vulnerability in information security in the following section:

In the computer system, vulnerability is the weakness that permits the hackers to get into the system and cause disturbance or loss of important information. every system is suspect to vulnerabilities. Along with the advancement of technologies a chance of vulnerability is also rise as millions of codes, human errors, many developers, etc. most of the time vulnerability happens due to the hardware, software, and procedural activities.

Hardware vulnerability:

Vulnerability in the hardware is the weakness that is used to attack the hardware either physically or logically. Some of the examples are:

• Delaying in the updates.
• Wek storage system.
• Unencrypted devices.

Software vulnerability:

A vulnerability in the software occurs due to problems in the development, installments, or configuration and it can also affect the security policies.

Examples:

• Lack of the validation of input.
• Cross-site scripting
• Data without encryption.
• Uploads without verification.

Vulnerability in a network:

A vulnerability in the network occurs because of both hardware and software. an example of a network vulnerability are:

• Communication without any protection.
• Malware or other threats as worms, bugs, viruses.
• Social engineering attacks.
• Firewalls misconfigurations.

Procedural vulnerability:

A weakness in the methods of organization operations. For examples:

• Password process: password should be implemented according to the standard policy.
• Training procedure: a company worker should be aware of the process as to what to do in a certain scenario or how to manage the security. employees should not be asked for an online credential for users. They should be well aware of the phishing threats etc.

How vulnerability helps hackers?

Attacks develop malicious programs and implement them in the system which helps them to take advantage of the vulnerability to get into the target network. They have an exploits kit which is like a set of lockers that can easily open any vulnerable system. it is common for hackers to use it to infect the computer with a malware threat. A vulnerability in windows is common for malware attacks into the system.