Technology

Cybersecurity Attack Types

25rows
5columns
53views
0downloads
Source:LLM Generated
25/25
Attack Type
Category
Severity
Notable Example
Primary Prevention
Phishing
Social EngineeringHigh2016 DNC email hack via spear-phishingSecurity awareness training, email filtering
Ransomware
MalwareCriticalWannaCry (2017) — 200,000+ systems in 150 countriesRegular backups, patch management, endpoint protection
SQL Injection
Web ApplicationCriticalHeartland Payment Systems breach (2008)Parameterized queries, input validation, WAF
Cross-Site Scripting (XSS)
Web ApplicationHighSamy worm on MySpace (2005)Output encoding, Content Security Policy
Distributed Denial of Service (DDoS)
NetworkHighDyn DNS attack (2016) — took down Twitter, NetflixDDoS mitigation services, rate limiting, CDN
Man-in-the-Middle
NetworkHighSuperfish adware on Lenovo laptops (2015)TLS/SSL encryption, certificate pinning
Zero-Day Exploit
Vulnerability ExploitCriticalStuxnet (2010) — targeted Iranian nuclear centrifugesThreat intelligence, defense in depth, rapid patching
Credential Stuffing
AuthenticationHighSpotify credential stuffing (2020) — 350K accountsMulti-factor authentication, password managers
Supply Chain Attack
Software Supply ChainCriticalSolarWinds Orion hack (2020) — 18,000 organizationsVendor auditing, SBOM, code signing verification
Brute Force
AuthenticationMediumiCloud celebrity photo leak (2014)Account lockout policies, CAPTCHA, rate limiting
DNS Spoofing
NetworkMediumBrazilian bank DNS hijack (2017)DNSSEC, DNS monitoring, secure resolvers
Buffer Overflow
Memory ExploitationCriticalCode Red worm (2001) — exploited IIS buffer overflowMemory-safe languages, ASLR, stack canaries
Insider Threat
HumanHighEdward Snowden NSA leak (2013)Principle of least privilege, DLP, behavioral analytics
Cryptojacking
MalwareMediumCoinhive script on 4,000+ government websites (2018)Ad blockers, endpoint monitoring, browser extensions
API Abuse
Web ApplicationHighFacebook API data scraping — Cambridge Analytica (2018)API rate limiting, OAuth scopes, input validation
Watering Hole
Social EngineeringHighUS Department of Labor website compromise (2013)Browser isolation, web content filtering, patching
Session Hijacking
Web ApplicationHighFiresheep tool for WiFi session stealing (2010)HTTPS everywhere, secure cookie flags, session rotation
Rootkit
MalwareCriticalSony BMG rootkit on music CDs (2005)Secure boot, integrity monitoring, EDR solutions
Typosquatting
Social EngineeringMediumFake Python packages on PyPI (2017)Package verification, dependency scanning, awareness
Side-Channel Attack
HardwareHighSpectre and Meltdown CPU vulnerabilities (2018)Microcode patches, kernel isolation, hardware mitigations
Cross-Site Request Forgery (CSRF)
Web ApplicationMediumNetflix CSRF vulnerability (2006)CSRF tokens, SameSite cookies, origin checking
Keylogger
MalwareHighZeus banking trojan (2007) — stole millions in credentialsAnti-malware, virtual keyboards, behavioral detection
ARP Spoofing
NetworkMediumCommon in public WiFi attacksDynamic ARP Inspection, VPN, network segmentation
Privilege Escalation
Vulnerability ExploitCriticalDirty COW Linux kernel vulnerability (2016)Principle of least privilege, kernel patching, containerization
Business Email Compromise
Social EngineeringCriticalUbiquiti Networks — $46.7M BEC fraud (2015)Email authentication (DMARC/DKIM), verification procedures

Free to explore · No signup needed

Loading community rankings...

Frequently asked questions

How is the Cybersecurity Attack Types list ranked?

The Cybersecurity Attack Types list is ranked by community votes. Every visitor can pick one option over another in head-to-head matchups, and the running totals determine the order you see. No editors or algorithms — just real people voting.

How many entries are in this Cybersecurity Attack Types dataset?

This dataset contains 25 entries, each with multiple sortable, filterable columns. The full table is visible on this page and can be downloaded as a CSV, JSON, or Excel file.

Can I download the Cybersecurity Attack Types data?

Yes. The download buttons at the top of the page give you the full 25-row dataset as CSV, JSON, or Excel. Use of the data is permitted under a Creative Commons Attribution license — credit dtbse.com when you republish.