Cyber Security 101: A Quick Start Guide for Beginners

Welcome to the fast-changing world of cyber security. This introductory lesson sets the stage for the course, whether you are exploring a career change or simply need basic knowledge for your business. You will meet your guide, Darren, and start learning the fundamental vocabulary and concepts to clear up common industry confusion.

Discover the core concepts of the field in plain English, avoiding unnecessary jargon. This lesson explains the differences between broad security, information security (infosec), and cyber security, which specifically protects digital systems from cyber threats. Understanding this vocabulary is an essential prerequisite for most qualifications and will help you hold intelligent conversations with tech professionals.

Dive into the CIA Triad, a crucial acronym representing the three key properties of secure information: Confidentiality, Integrity, and Availability. Learn how tools like passwords and multi-factor authentication (MFA) maintain confidentiality, while access privileges and backups ensure data integrity against unauthorized modifications or human error. Finally, understand why authorized digital information must always be available when needed, much like cash from an ATM.

Grasp the vital differences between three commonly confused concepts: threat, vulnerability, and risk. This lesson defines a cyber threat as a malicious act aimed at damage, theft, or disruption (often for financial reasons), and a vulnerability as a system weakness that can be exploited. You will also learn how risk represents the potential exposure to loss of productivity or harm to an organization's reputation.

Explore the critical reasons why cyber security is indispensable in our digital society. This lesson examines the high stakes of protecting Personally Identifiable Information (PII), medical records, and business intellectual property to prevent blackmail, reputational damage, and costly GDPR fines. It also highlights how governments must protect vital infrastructure and national security from highly skilled adversaries who seek to destabilize them.

Expand your vocabulary with essential cyber security terminology. You will learn to define malicious software (malware), exploits designed to take advantage of vulnerabilities, and breaches where bad actors gain unauthorized access. The lesson also covers defensive concepts like firewalls, end-to-end encryption (changing plaintext to ciphertext), Denial of Service (DoS) attacks, massive DDoS attacks using botnets, and penetration testing where experts look for weaknesses.

Review the key definitions and concepts covered so far, from the basics of information security to the CIA triad and the differences between threat, vulnerability, and risk. This quick recap reinforces your learning and prepares you for the upcoming quiz to test your newly acquired knowledge.

Uncover the diverse spectrum of participants in the cyber landscape, moving beyond simple "good" and "bad" labels. This lesson introduces ethical "white hat" hackers who test and fortify systems, "black hat" hackers motivated by financial gain or organized crime, and "grey hats" who operate in a murky ethical space. You will also learn about ideology-driven hacktivists, dangerous insider threats, powerful nation-state actors targeting infrastructure like electricity grids, and low-skilled script kiddies.