Across
- 4. — Fake calls/SMS/emails to steal OTP or credentials (8)
- 5. — Blocks unauthorized network traffic (8)
- 9. — First stage of cyber attack life cycle (14)
- 11. — Data remains accurate and untampered (9)
- 12. — Controls that identify threats when they occur (9)
- 15. — Controls that stop threats before they occur (10)
- 16. — Only authorized users can access data (13)
Down
- 1. — Critical corrective control (3-2-1 rule) (6)
- 2. — Systems and data accessible when needed (11)
- 3. — Verifying user identity (often multi-factor) (14)
- 5. — Investigation after a security incident (9)
- 6. — Protects data at rest and in transit (10)
- 7. — Controls that help recover after an incident (10)
- 8. — Security Information and Event Management system (4)
- 10. — Attack that floods servers to make services unavailable (4)
- 13. — Stealing sensitive data from a compromised system (12)
- 14. — Malware that encrypts files until ransom is paid (9)
- 17. — World's largest biometric ID system that had leaks (7)
