// THREAT DETECTION AND DATA PRIVACY TERM
Threat Vector
A threat vector is the specific path or method an attacker uses to gain unauthorized access to a computer or network. This is the route through which a malicious payload, like a virus or ransomware, is delivered to the victim's system.
TECHNICAL DEFINITION
In cybersecurity, a threat vector is the specific attack path or delivery mechanism an adversary uses to exploit a system vulnerability and deliver a malicious payload, such as malware or ransomware. Common vectors include phishing emails, compromised websites, unpatched software, and insecure APIs, which collectively form part of an organization's attack surface.
BACKGROUND
Computer security is a subdiscipline within the field of information security. It focuses on protecting computer software, systems, and networks from threats that can lead to unauthorized information disclosure, theft, or damage to hardware, software, or data, as well as to the disruption or misdirection of the services they provide.
READ MORE ON WIKIPEDIASYNONYMS & ALIASES
- attack vector
- attack path
- entry point
- infiltration route
- delivery method
- attack channel
USAGE NOTE
Security teams analyze threat vectors to identify how attackers might penetrate defenses and to prioritize security controls.
DEVELOPERS
Organizations developing technology related to Threat Vector.
Develops integrated cybersecurity platforms like Cortex XDR and Prisma Cloud that identify, prevent, and respond to threats across multiple vectors, including network, endpoint, and cloud environments.
Provides the Falcon platform, a cloud-native endpoint protection solution that uses advanced AI and threat intelligence to detect and stop breaches originating from various endpoint threat vectors like malware, exploits, and fileless attacks.
Offers the Fortinet Security Fabric, a broad, integrated, and automated cybersecurity platform that provides comprehensive protection against threats across the entire digital attack surface, addressing vectors from IoT devices to the cloud.
Specializes in people-centric cybersecurity solutions, focusing on email, social media, and mobile as primary threat vectors. Their technology is designed to stop phishing, malware, and impersonation attacks before they reach users.
A leading threat intelligence and incident response organization that provides deep insights into adversary tactics, techniques, and procedures (TTPs). Their technology and services help organizations understand and defend against the specific threat vectors used by advanced attackers.
Operates a cloud-native Zero Trust Exchange platform that secures user-to-application connections. It inspects all traffic to identify and block threats from web and cloud application vectors before they can reach the corporate network.
Develops an Extended Detection and Response (XDR) platform that integrates telemetry from multiple security layers, including endpoint, email, and network. This provides visibility into complex attacks, starting from the initial threat vector through the entire kill chain.
A non-profit organization that created and maintains the MITRE ATT&CK framework, a globally-accessible knowledge base of adversary tactics and techniques. The framework's 'Initial Access' tactic is a comprehensive catalog of common threat vectors used by cyber adversaries.