Any action that intends to exploit vulnerabilities or disrupt the normal functioning of systems, networks, or applications. This could be initiated by individuals, groups, or even automated scripts with the aim of compromising system integrity, confidentiality, or availability, often leading to unauthorized access, data theft, or service disruption.