ACTIVCYBER_white_trans25

Cyber Jargon-Buster

In whatever we do, we try to explain everything in plain English.

Below you’ll find a selection of the most commonly-used technical terms when talking about online and cyber security.

Just click on each to find a plain English explanation of what they mean and real-world examples of how you might come across them.

DATA BREACH
  • What it is: When sensitive, protected, or confidential data is accessed or disclosed without permission.
  • Why it matters for businesses: Businesses often hold personal information about staff, products, suppliers and customers. A breach can lead to identity theft, legal consequences, and damage to the business’s reputation. It is a legal requirement that businesses report serious breaches to the Information Commissioner’s Office (ICO) under data protection laws.
ENCRYPTION
  • What it is: A method of scrambling data (such as emails or files) so that only authorised people can read it.
  • Why it matters for businesses: Using encryption for sensitive information (e.g., customer data or staff payroll) helps keep data private and secure, especially when sending it outside the business.
FIREWALL
    • What it is: A digital ‘gatekeeper’ that monitors and controls incoming and outgoing network traffic based on security rules.
    • Why it matters for businesses: It helps block harmful traffic (like hackers trying to break in) while allowing safe traffic (like staff  accessing the internet for website, social media, product or booking updates).
MALWARE
  • What it is: Short for “malicious software,” it’s a catch-all term for any software designed to harm or exploit devices and networks (e.g., viruses, worms, trojans, spyware).
  • Why it matters for businesses: Infected devices can slow down or crash systems, steal confidential information, or even compromise your entire business.
PATCH MANAGEMENT
  • What it is: The process of updating software (such as operating systems, apps, and security tools) with the latest fixes and improvements.
  • Why it matters for businesses: Outdated software is an easy target for cybercriminals. Regular patches close known vulnerabilities and keep your devices and systems more secure.
PHISHING
    • What it is: A scam where attackers send emails (or sometimes text messages) pretending to be a trusted source—like a bank, government agency, or even a well-known company—to trick you into giving away personal or financial information.
    • Why it matters for businesses: Staff may receive emails appearing to come from you or others in the business, IT providers, customers or suppliers. Clicking malicious links or sharing sensitive information can lead to data breaches.
RANSOMWARE
  • What it is: A type of malware that locks you out of your data or systems until you pay a ransom—often in cryptocurrency.
  • Why it matters for businesses: Small businesses are prime targets because they hold valuable data and criminals know they can disrupt your business very easily. Paying a ransom is not a guarantee of data recovery and can be very costly and damaging.
SOCIAL ENGINEERING
  • What it is: Manipulating people into divulging confidential information or performing actions, often by posing as someone trustworthy or exploiting human error and curiosity.
  • Why it matters for businesses: Even with good technical protections, staff can be tricked into handing over passwords or sensitive data if they aren’t aware of social engineering tactics.
TWO-FACTOR OR MULTI-FACTOR AUTHENTICATION (2FA or MFA)
  • What it is: A security step that requires users to provide two or more forms of identification before logging in (e.g., a password plus a unique code sent to a phone).
  • Why it matters for businesses: Adding an extra step to logins significantly reduces the risk of unauthorised access to email accounts, customer data, and other vital platforms like social media or your website content management system.
VIRTUAL PRIVATE NETWORK (VPN)
  • What it is: A secure ‘tunnel’ over the internet that encrypts data and masks your real IP address.
  • Why it matters for businesses: If staff need to access your systems remotely (e.g., working from home), a VPN adds an extra layer of security to protect your business and customer data from prying eyes.