Common cyberattacks include:

1. Phishing: Emails or messages pretending to be from legitimate sources to trick users into revealing sensitive information or downloading malicious attachments.
2. Malware: Malicious software like viruses, worms, or Trojans designed to disrupt computer operations, steal data, or gain unauthorized access.
3. Ransomware: Software that encrypts a user’s data and demands payment for decryption, often distributed through phishing or vulnerabilities in software.
4. Denial-of-Service (DoS): Overwhelming a system or network with excessive traffic to make it unavailable to users, often through botnets or other means.
5. Man-in-the-Middle (MitM): Interception of communication between two parties, allowing attackers to eavesdrop or manipulate messages.
6. SQL Injection: Exploiting vulnerabilities in web applications to inject malicious SQL code, allowing attackers to gain access to sensitive data or manipulate databases.
7. Zero-Day Exploit: Exploiting vulnerabilities in software that are unknown to the software developer or vendor, giving attackers a head start before fixes are developed.
8. Social Engineering: Manipulating individuals to divulge confidential information or perform actions that compromise security, often through pretexting or impersonation.
9. Drive-by Downloads: Malware downloads that occur without the user’s knowledge or consent, often through visiting compromised websites.
10. Cross-Site Scripting (XSS): Injecting malicious scripts into web pages viewed by other users, potentially compromising their interactions with the site.

These attacks exploit vulnerabilities in systems, networks, and human behavior, highlighting the importance of robust cybersecurity measures and user vigilance.