17 Aug An employee’s laptop was stolen at a restaurant.
|
Threat |
List Control(s) in this Column and type P, D, and/or C next to the control to indicate whether it is preventive, detective, and/or corrective. |
|
An employee’s laptop was stolen at a restaurant. The laptop contained personal information about the company’s customers that could potentially be used to commit identity theft. |
|
|
An employee successfully logged into the payroll system by guessing the payroll supervisor’s password. |
|
|
An attacker gained access to the company’s internal network by installing a wireless access point in a wiring closet located next to the elevators on the fourth floor of a high-rise office building that the company shared with several other companies. |
|
|
A criminal remotely accessed a sensitive database using the authentication credentials (user ID and strong password) of an IT manager. At the time the attack occurred, the IT manager was logged into the system at his workstation at company headquarters. |
|
|
An employee received an e-mail purporting to be from his boss informing him of an important new attendance policy. When he clicked on a link embedded in the e-mail to view the new policy, he infected his laptop with a keystroke logger. |
|
|
A company’s programming staff wrote custom code for the shopping cart feature on its website. The code contained a buffer overflow vulnerability that could be exploited when the customer typed in the ship-to address. |
|
|
A company purchased the leading “off-the-shelf” e-commerce software for linking its electronic storefront to its inventory database. A customer discovered a way to directly access the back-end database by entering appropriate SQL code. |
|
|
Attackers broke into the company’s information system through a wireless access point located in one of its retail stores. The wireless access point had been purchased and installed by the store manager without informing central IT or security. |
|
|
An employee picked up a USB drive in the parking lot and plugged it into his laptop to “see what was on it.” As a result, a keystroke logger was installed on that laptop. |
|
|
Once an attack on the company’s website was discovered, it took more than 30 minutes to determine who to contact to initiate response actions. |
|
|
To facilitate working from home, an employee installed a modem on his office workstation. An attacker successfully penetrated the company’s system by accessing that modem. |
Our website has a team of professional writers who can help you write any of your homework. They will write your papers from scratch. We also have a team of editors just to make sure all papers are of HIGH QUALITY & PLAGIARISM FREE. To make an Order you only need to click Ask A Question and we will direct you to our Order Page at WriteDemy. Then fill Our Order Form with all your assignment instructions. Select your deadline and pay for your paper. You will get it few hours before your set deadline.
Fill in all the assignment paper details that are required in the order form with the standard information being the page count, deadline, academic level and type of paper. It is advisable to have this information at hand so that you can quickly fill in the necessary information needed in the form for the essay writer to be immediately assigned to your writing project. Make payment for the custom essay order to enable us to assign a suitable writer to your order. Payments are made through Paypal on a secured billing page. Finally, sit back and relax.