The FREE Cybersecurity Glossary by Thor Pedersen!

SMART: An acronym for Specific, Measurable, Achievable, Relevant, and Time-bound, SMART is a goal-setting framework that can be applied to various domains, including security. For example, a SMART security goal could be to reduce the number of successful phishing attacks by 50% within the next six months by implementing new training and awareness programs. By making goals SMART, organizations can more effectively plan, monitor, and achieve their security objectives.

Smart cards: A type of security token that stores information on a microprocessor chip, such as personal identification or financial data. It is used in access control and secure transactions. Examples include using a smart card to access a secure facility or using a smart card for contactless payment.

SMTP relay: The process of transferring an email from one mail server to another. In this context, the term "relay" describes the act of passing along the email. SMTP (Simple Mail Transfer Protocol) is the protocol used for sending email across the internet. While SMTP relays are essential for email delivery, they can be exploited by spammers if not properly secured, leading to a mail server being used to send unsolicited emails.

Smurf attack: A type of network attack where a large number of Internet Control Message Protocol (ICMP) packets are sent to a broadcast address, prompting numerous devices to respond, leading to network congestion and potential denial of service. This attack is used to disrupt network availability.

Sniffer: A type of network monitoring tool that captures and analyzes network traffic to identify patterns and anomalies. It is commonly used by network administrators and security professionals to monitor network activity, troubleshoot network issues, and detect security threats. Examples of sniffers include Wireshark, tcpdump, and NetWitness.

Snooping: An invasive activity where an unauthorized person observes or intercepts private communication in a network, often to gain access to confidential information. While similar to sniffing, snooping is more commonly used to refer to passive listening and is considered a security risk.