Which of the following correctly describes an external attack?

An external attack is characterized by unauthorized access or attempts to gain access to a network or system from users who are not part of the organization. This typically involves individuals or groups, such as hackers or cybercriminals, trying to exploit vulnerabilities from outside the organization’s defenses. By defining an external attack this way, it emphasizes that the source is external, which is the key aspect of such incidents.

The other choices describe different types of issues but do not align with the definition of an external attack. A fault due to system misconfiguration indicates an internal issue rather than an external threat. Attacks originating from internal network users suggest insider threats, which are distinctly different from external attacks. Lastly, a vulnerability caused by third-party software highlights a potential risk but does not specify that it originates from outside the organization, thus not fitting the description of an external attack.