Term 721
Virtualization security
Virtualization security is the practice of protecting virtualized environments including virtual machines, hypervisors, virtual networks, and related infrastructure from threats and vulnerabilities.
Acronym study
Terms 721–750 of 754 ISC2 CC acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 721
Virtualization security is the practice of protecting virtualized environments including virtual machines, hypervisors, virtual networks, and related infrastructure from threats and vulnerabilities.
Term 722
A virus is a malicious software program that attaches itself to legitimate files or programs and spreads to other systems, often causing damage or stealing information.
Term 723
A VLAN (Virtual Local Area Network) is a logical grouping of network devices that behave as if they are on the same physical network segment, regardless of their actual physical location.
Term 724
A Virtual Private Cloud (VPC) is a logically isolated section of a cloud provider's network where you can launch and manage resources like servers and databases with complete control over IP addressing, subnets, route tables, and security.
Term 725
A VPC endpoint is a private connection that allows resources inside a Virtual Private Cloud to access supported AWS services or external networks without going over the public internet.
Term 726
VPC peering is a direct network connection between two virtual private clouds that allows them to communicate using private IP addresses as if they were part of the same network.
Term 727
A VPN (Virtual Private Network) creates a secure, encrypted tunnel between your device and a remote server, protecting your data and hiding your online activity.
Term 728
A VPN creates an encrypted tunnel over a public network to securely connect remote users or sites to a private network.
Term 729
A vulnerability is a weakness in a system, network, or software that could be exploited by a threat to cause harm or unauthorized access.
Term 730
A vulnerability assessment is a systematic review of security weaknesses in an information system, evaluating if the system is susceptible to any known vulnerabilities, assigning severity levels, and recommending remediation or mitigation.
Term 731
Vulnerability management is the continuous process of identifying, classifying, prioritizing, and remediating security weaknesses in an organization's IT environment.
Term 732
A vulnerability scan is an automated process that checks systems, networks, and applications for known security weaknesses or misconfigurations.
Term 733
Vulnerability scanning is an automated process that identifies security weaknesses in systems, networks, and applications by comparing them against known vulnerability databases.
Term 734
A Web Application Firewall (WAF) is a security tool that filters, monitors, and blocks HTTP traffic to and from a web application to protect it from common attacks.
Term 735
Weighted routing is a traffic management technique that distributes network requests across multiple servers or paths according to assigned numerical weights, allowing for controlled, uneven load distribution.
Term 736
WEP (Wired Equivalent Privacy) is an outdated wireless security protocol that encrypts data using the RC4 cipher and a static key, but is easily broken.
Term 737
Wi-Fi Protected Access (WPA) is a security standard designed to secure wireless networks by encrypting data and controlling access, replacing the older and less secure WEP standard.
Term 738
A network security feature designed to simplify the process of connecting devices to a Wi-Fi network by using a push button or PIN instead of entering the full password.
Term 739
A wildcard mask is a sequence of 32 bits used alongside an IP address to define which bits must match and which are ignored for routing, access control, or network matching purposes.
Term 740
A Win32 app is a traditional Windows program that runs directly on a Windows PC, using the same system resources and displaying a standard window with menus and buttons.
Term 741
Windows Defender is a built-in antimalware and security tool in Microsoft Windows that protects your computer from viruses, spyware, and other malicious software without needing to install anything extra.
Term 742
The Windows event log is a built-in service that records system, security, and application activities in a structured file so administrators can monitor health, detect problems, and investigate security incidents.
Term 743
WinRM is Microsoft's implementation of WS-Management, enabling secure remote management of Windows systems over HTTP/HTTPS.
Term 744
Wired Equivalent Privacy (WEP) is a security protocol for wireless networks, designed to provide a level of data confidentiality comparable to a wired LAN.
Term 745
Wireshark is a free, open-source network protocol analyzer that captures and inspects data packets traveling over a computer network in real time.
Term 746
Workload Identity Federation lets a non-human software workload (like an app or server) securely prove its identity to a cloud provider using a token from an external identity provider, without needing long-term secrets.
Term 747
A worm is a type of malicious software that can copy itself and spread to other computers over a network, often without any human action.
Term 748
WPA (Wi-Fi Protected Access) is a security protocol that encrypts wireless network traffic to prevent unauthorized access and eavesdropping.
Term 749
WPA3 is the latest security standard for Wi-Fi networks, providing stronger encryption and protection against password guessing attacks compared to its predecessor WPA2.
Term 750
XDR, or Extended Detection and Response, is a unified security platform that collects and correlates data across multiple security layers—endpoints, networks, servers, cloud workloads, and email—to improve threat detection and enable faster response.