What is Risk Mitigation in Cybersecurity?

The server encountered an unexpected condition that prevented it from fulfilling the request.

The target resource does not have a current representation that would be acceptable to the user agent, according to the proactive negotiation header fields received in the request, and the server is unwilling to supply a default representation. The server SHOULD generate a payload containing a list of available representation characteristics and corresponding resource identifiers…

The origin server did not find a current representation for the target resource or is not willing to disclose that one exists. A 404 status code does not indicate whether this lack of representation is temporary or permanent; the 410 Gone status code is preferred over 404 if the origin server knows, presumably through some configurable means,…

An attack is the exploitation of a vulnerability by a threat agent. For example, any intentional attempt to exploit a vulnerability of an organization’s security infrastructure to cause damage, loss, or disclosure of data can be classified as an attack.

The target resource has been assigned a new permanent URI and any future references to this resource ought to use one of the enclosed URIs. Clients with link-editing capabilities ought to automatically re-link references to the effective request URI to one or more of the new references sent by the server, where possible. The server…

Accepting risk, risk tolerance, or accepted risk is the result after a cost/benefit analysis shows countermeasure costs would outweigh the possible cost of loss due to a risk. Example: Management has agreed to accept the consequences and/or loss if that risk actually happens. For example, a patch for a vulnerability exists but every time the…