1. Incident Terminology

Breach

The loss of control, compromise, unauthorized disclosure, unauthorized acquisition, or any similar occurrence.

Event

Any observable occurrence in a network or system.

Exploit

A particular attack. It is named this way because these attacks exploit system vulnerabilities.

Incident

An event that actually or potentially jeopardizes the confidentiality, integrity, or availability.

Intrusion

A security event, or combination of events, that constitutes a deliberate security incident in which an intruder gains, or attempts to gain, access to a system.

Threat

Event or circumstance with harmful potential via unauthorized access, destruction, disclosure, modification, or denial of service that can damage operations, reputation, assets, individuals, or national security.

Vulnerability

Weakness in an information system, system security procedures, internal controls, or implementation that could be exploited by a threat source.

Zero Day

A previously unknown system vulnerability with the potential of exploitation without risk of detection or prevention.