What is an Attack? – Risk Management Terminology

An attack is the exploitation of a vulnerability by a threat agent.

For example, any intentional attempt to exploit a vulnerability of an organization’s security infrastructure to cause damage, loss, or disclosure of data can be classified as an attack.