If a program on my computer should somehow manage to send data out without authorization, am I correct that this would be a "back door" approach for a hacker to get access to files on my computer?