Threat Types - What is a brief Taxonomy of threats? How can it be broken down.
Just some thoughts.
Threat Types - Internal Undirected
Single Point Mistakes
Threat Type - Internal Directed
Threat Type - External Undirected
Disasters Service Failure (power, building, metropolitan)
Info Security Events (Viruses, Worms, Spyware)
Global IT issues (Mass Scans, Naming Attacks)
Threat Type - External Directed
How would you Break it down? What would you add to groupings and to the listings?