Answer:
Here are 3 to 5 threats to the cyber domain, covering each of the three layers (physical, network, and application):
Physical Layer Threat:
Data Center Attacks: Physical attacks on data centers can compromise hardware, leading to data theft or service disruptions. Examples include break-ins or sabotage that damage critical infrastructure.
Network Layer Threat:
DDoS Attacks (Distributed Denial of Service): These attacks overwhelm a network with traffic, causing service outages and disruptions. They exploit network vulnerabilities and can affect any organization’s ability to operate.
Application Layer Threat:
SQL Injection: This attack exploits vulnerabilities in web applications by injecting malicious SQL queries, allowing attackers to access, modify, or delete database information. It can compromise sensitive data and disrupt services.
Additional Threat (Cross-Layer):
Ransomware: Ransomware can affect all layers by encrypting data (application layer) and demanding payment for decryption keys. It can also disrupt network operations and require physical access to devices for installation.
Additional Threat (Cross-Layer):
Phishing Attacks: Phishing targets users at the application layer by tricking them into revealing sensitive information. These attacks can lead to unauthorized access to networks and systems (network layer) and can ultimately affect physical devices if credentials are used maliciously.