What term refers to an entity unauthorized to access or modify information?

The term that refers to an entity unauthorized to access or modify information is "Unauthorized agent." This term encapsulates the essence of someone or something that is attempting to breach security boundaries or gain access to data without appropriate permissions.

In cybersecurity, unauthorized agents can be external actors or internal users who do not have the necessary rights or clearance to engage with sensitive data. Understanding this term is crucial as it highlights the importance of maintaining strict access controls and monitoring who can interact with information systems.

While an adversary typically refers to any individual or group that poses a threat, they may not always be unauthorized; for example, they might be insiders who misuse legitimate access. Similarly, a malicious user implies intent to harm or disrupt, which while relevant, does not specifically denote unauthorized status. An insider threat can involve individuals who have legitimate access but misuse it, which does not align with the context of being strictly unauthorized.