A cyber threat is an attack that exploits vulnerabilities in your computer systems, networks and devices. These attacks can steal sensitive information, disrupt operations or destroy data. They can be carried out by criminal groups, hackers and nation-states. These attacks also target individuals and companies. They can include malware, phishing, ransomware and man-in-the-middle attacks.

The most common cyber threats involve the theft of data or unauthorized access to your systems. Hackers and other threat actors seek financial gain by stealing money or credit cards, personal information or privileged accounts. They may also want to access critical infrastructure or intellectual property. Some cyberattacks are designed to damage a company’s reputation.

Many cyberattacks are carried out by third parties, including contractors and suppliers who don’t have the same level of security in place as your organization. Some of these threats, such as distributed denial-of-service (DDoS) attacks and ransomware, directly target your systems and networks and can result in lost productivity, business interruptions or loss of customer trust.

Other cyberattacks, like extortionware or malware, encrypt files or the entire system and demand payment in order to regain access. These types of attacks can be hard to detect and are very costly. To prevent these threats, use multiple factors for authentication – something you know (passwords), something you have (access card or token) and something you are (fingerprint, retina or eye scan). Regular training and awareness can help ensure that employees don’t make a mistake that could lead to a cyber incident.