🔍
🌐 Web
📄 HTML 🎨 CSS JavaScript 🐘 PHP 🔍 SEO 🅱️ Bootstrap New 🌬️ Tailwind CSS Soon 🔷 TypeScript Soon
🔤 Languages
🐍 Python 🗄️ SQL 🔵 C Programming Soon 🟣 C++ Soon Java Soon 💎 Ruby Soon
💻 CS Basics
🖥️ Computer Basics ⚙️ Operating Systems 📊 Data Structures 🧮 Algorithms 🗄️ DBMS 🏗️ Software Engineering 🏛️ Computer Architecture
🌐 Networking
📡 Computer Networks 🔗 OSI Model 🌍 TCP/IP 🔒 HTTP & HTTPS 📶 DNS Explained
🔐 Security
🛡️ Cyber Security 🕵️ Ethical Hacking 🔑 Passwords & Privacy 🦠 Viruses & Malware 🔏 VPN & Firewall 🎣 Social Engineering 🔐 Cryptography & Encryption
🤖 AI & Data
🤖 Artificial Intelligence 🧠 Machine Learning 📊 Data Science ☁️ Big Data 💬 Prompt Engineering
🛠️ Tools
🐙 Git & GitHub 📝 VS Code Tips 💻 Command Line 📋 Cheat Sheets Interview Q&A 🏆 Quizzes
👶 Kids📝 Blog About Contact 🚀 Get Started Free

Cyber Security

Learn about cyber threats, common attack types, and how individuals and organizations defend against them.

What is Cyber Security?

Cyber Security is the practice of protecting computer systems, networks, and data from digital attacks, unauthorized access, damage, or theft. As society becomes more connected, cyber security has become one of the most critical fields in technology.

Common Cyber Threats

  • Phishing — Deceptive emails or websites that trick users into revealing credentials or downloading malware.
  • Malware — Malicious software including viruses, ransomware, spyware, and trojans.
  • Man-in-the-Middle (MitM) — Attacker intercepts communication between two parties.
  • SQL Injection — Inserting malicious SQL code into input fields to manipulate databases.
  • Cross-Site Scripting (XSS) — Injecting malicious scripts into web pages viewed by other users.
  • DDoS (Distributed Denial of Service) — Flooding a server with traffic to make it unavailable.
  • Zero-Day Exploits — Attacking unknown vulnerabilities before developers can patch them.

The CIA Triad

The three core principles of information security:

  • Confidentiality — Only authorized parties can access sensitive data.
  • Integrity — Data is accurate and unmodified by unauthorized parties.
  • Availability — Systems and data are accessible when needed.

Defense Strategies

  • Firewalls — Filter network traffic based on security rules.
  • Encryption — Scramble data so only authorized parties can read it.
  • Multi-Factor Authentication (MFA) — Require more than just a password to log in.
  • Patch Management — Keep software updated to fix known vulnerabilities.
  • Security Audits & Penetration Testing — Proactively find and fix weaknesses.
  • Principle of Least Privilege — Give users only the access they need, nothing more.

Domains of Cyber Security

Cyber security is a broad discipline that is typically divided into several key domains:

  • Network Security — Securing computer networks from intruders, whether targeted attackers or opportunistic malware.
  • Application Security — Keeping software and devices free of threats. Security begins in the design stage, long before a program or device is deployed.
  • Information & Data Security — Protecting the integrity and privacy of data, both in storage and in transit.
  • Cloud Security — A set of policies, technologies, applications, and controls utilized to protect virtualized IP, data, applications, services, and the associated infrastructure of cloud computing.
  • Operational Security (OpsSec) — The processes and decisions for handling and securing data assets, including user permissions and security policies.
  • Disaster Recovery & Business Continuity — Defining how an organization responds to a cyber-security incident or any other event that causes the loss of operations or data.

Modern Security Paradigms

Modern security goes beyond traditional boundaries (like firewalls and local networks) and embraces new models:

  • Zero Trust Architecture — A security framework centered on the belief that organizations should not automatically trust anything inside or outside its perimeters. The core motto is: "Never trust, always verify."
  • Defense in Depth — An information assurance approach in which multiple layers of security controls (defense) are placed throughout an IT system. If one mechanism fails, another is in place to block the threat.

Key Cyber Security Areas

Explore these essential components of cyber security in greater depth:

🔐 Cryptography & Encryption

Cryptography is the science of securing information by transforming it into an unreadable format (encryption) so that only those with the correct key can decrypt it. It underpins all secure communication online, from HTTPS websites to online banking. Learn more about symmetric/asymmetric encryption and hashing in our detailed Cryptography & Encryption Guide.

🎣 Social Engineering

While technical defenses like firewalls and antivirus software are critical, attackers often bypass them by targeting the human element. Social engineering involves manipulating people into giving up confidential information or performing actions that compromise security. Read about common manipulation techniques in our detailed Social Engineering Guide.

What's Next?

Dive deeper into specific security domains: