Cis 500 - Cyber Security in Business Organizations

In: Computers and Technology

Submitted By Clanchief51
Words 2080
Pages 9
Case Study #1
Cyber Security in Business Organizations
CIS 500: Information Systems for Decision-Making

Cyber Security in Business Organizations

On December 19, 2013, the Target Corporation in Minneapolis, MN, put out a press release on their website confirming there had been a security breach allowing unauthorized database access to their Point of Sale (POS) systems, between November 27 and December 15,
2013. Target reported approximately 40 million credit/debit card accounts could have been affected. In the release, Gregg Steinhafel, chairperson, president and chief executive officer, stated the following,
“Target’s first priority is preserving the trust of our guests and we have moved swiftly to address this issue, so guests can shop with confidence. We regret any inconvenience this may cause. “We take this matter very seriously and are working with law enforcement to bring those responsible to justice.” (Target Press Release, 12/19/2013).
Retailers are prime targets for hackers. Why? Simply stated, Risk versus Benefit. Retail stores compile a vast amount of financial data and banking information for millions of people across the country. It could be considered a new version of bank robbery. Rather than dealing with all the planning, resources needed and danger involved with robbing one actual bank, not to mention having to split the money with cohorts, hackers can skip the bank altogether. Obtaining consumers’ banking information provides all the benefits of stolen money, from multiple banks, quickly, without danger of getting shot and minimal risk of being caught. Considering the attack on Target, (ironic), after they installed $1.6 million malware detection tool in the summer of
2013, it is only logical to wonder how this could happen. There are some big challenges to keeping a company and its’ customers safe.
According to IBM…...

Similar Documents

Cyber Security

...Testing ACC 626: IT Research Paper Emily Chow 20241123 July 1, 2011 I. Introduction Due to the increasing vulnerability to hacking in today’s changing security environment, the protection of an organization’s information security system has become a business imperative . With the access to the Internet by anyone, anywhere and anytime, the Internet’s “ubiquitous presence and global accessibility” can become an organization’s weakness because its security controls can become more easily compromised by internal and external threats. Hence, the purpose of the research paper is to strengthen the awareness of ethical hacking in the Chartered Accountants (CA) profession, also known as penetration testing, by evaluating the effectiveness and efficiency of the information security system. 2 1 II. What is Ethical Hacking/Penetration Testing? Ethical hacking and penetration testing is a preventative measure which consists of a chain of legitimate tools that identify and exploit a company’s security weaknesses . It uses the same or similar techniques of malicious hackers to attack key vulnerabilities in the company’s security system, which then can be mitigated and closed. In other words, penetration testing can be described as not “tapping the door” , but “breaking through the door” . These tests reveal how easy an organization’s security controls can be penetrated, and to obtain access to its confidential and sensitive information asset by hackers. As a result, ethical hacking is......

Words: 11999 - Pages: 48

Cyber Security

...UNIVERSITY | Cyber Security | | Patrice Brockington | 4/20/2013 | | Cyber Security The security of online files, applications, documents, consumer information, and organization information are just some of the valued items that need to be secure from cyber threats. Companies and organization that utilize the internet to conduct business know all too well the importance of securing the information and any and all information of those that they do business with. Having some general knowledge of what cyber security is and the importance of it is our purpose in this brief. Cyber security is the “measures taken to protect a computer or computer system (as on the Internet) against unauthorized access or attack”, as defined by Merriam-Webster.com (Online, 2013). In general practice cyber security is simply securing online information and service systems. If you ever entered your name, address or any personal information online or into some database to win a prize this information is online or somehow accessible via the Internet. It is this type of information that so many millions of people are concerned about if it is secure or not, since it is out on the Internet. “The nation’s critical infrastructure relies heavily on the Internet for everything from submitting taxes, to applying for student loans, to following traffic signals, to even powering our homes” (Government, 2013). This is why cyber security is one of this country’s most important national......

Words: 645 - Pages: 3

Cyber Security

...Escalating cyber-attacks on the general public and distinct divisions such as the immediate neighborhood, nationwide, and worldwide level have stimulated an increase in financing and support for the examination of increased cyber security enhancements. The purpose of this paper is to discuss the new technologies for boosting cyber security in a local level, national level and in the Global level. The paper focuses on pointing out the mandate of the government to fight cyber insecurity. New technologies need to dynamically assess networks in real-time such as with the use of Remote Agents for real time reports. These technologies also need to make the probability of attack less predictable and constantly evolving such as through the use of moving target defense. Introduction Cybercriminals still create new routes in which to exploit and victimize people and In as much as country state programmers trade off with firms, government organizations, and non-administrative associations to make undercover work systems secure, information is still being stolen. As the social world gets to a new paradigm where use of sophisticated devices and gadgets and technology go mainstream, we end up putting our privacy into the brink of attack. This is because the cyber criminals too are advancing in their technology to exploit victims in the new paradigm. For instance, a large number of staff today now carry versatile gadget that are able to detect their location using the......

Words: 590 - Pages: 3

Cis 500

...CIS 500 Weeks 6, 7, 8,9,11 Discussion Questions Week 6 * Mobile banking features have added several advantages for customers however; there are security risks that come with them. Determine the security risks with respect to phishing, smishing, vishing, cloning, and a lost or stolen smartphone that have been experienced by the financial services industry as a result of mobile banking. Phishig – Is when malware is downloaded on to a device and it attempts to obtain personal information. It lies in wait and gathers information from apps such as a mobile banking app to gain your login and password. If you bank does not have proper security in place this can lead to your account getting hacked and loss of money. Smishing- This is where fraudulent communication occurs in the form of a text message in order to obtain personal information. Vishing – This is similar to smishing instead of getting information through text it is obtained through phone calls or voicemails. Cloning- The transfer of information from one device to another device including the electronic serial number When a smartphone is lost or stolen this can lead to a compromise to a person’s personal information since it may be on the phone. I bank with Bank of America and use the mobile app to manage my account transfer funds, pay bills, deposit checks and so on. The app does not store the password but it does store the user login. You are unable to just log in to it from a new device or location without......

Words: 2846 - Pages: 12

Cis 500 Assignment 3 Cyber Security

...innovative security processes and policies to decrease the threats and challenges inherited from new technologies, software applications, and network devices. Information, network equipment’s, transmission media, computer systems, and servers are subject to threats. “Yet the use of information and communication technologies has increased the incidents of computer abuse.” (Backhouse and Dhillon). Security measures and countermeasures are fixed to guard organization against different security assaults. To assure the safekeeping requirements of a given company, it is vital to be able to assess the current security demands of an organization as well as the measures taken to attain such requirements. Security weaknesses cause an adverse impact on organizations such as financial loss, reputations, and loss of customer confidence (Kumar, Park, and Subramaniam, 2008). The purpose of applying security measures, controls, and strategies is to protect information security objectives and information assets. Integrity, confidentiality, and availability are the primary concerns in categorizing information level of safety for Information Security purposes (Chen, Shaw and Yang, 2006, Johnson, 2008 and. Nyanchama, 2005). RED FLAGS The stealing of payment card information from over 40 million Target customer was not have prevented by Target. Target could have acted on the information they received from the cyber-security firm it hired to monitor its systems. Target security team should...

Words: 882 - Pages: 4

Cyber Security

...INTRODUCTION: This research report conducts analysis on security. Technology these days is going up very fast and technology has been changed the route business administered by giving online services to their customers, to secure data in to “cloud” and allowing them to get their data from smart phones and tablets. This process of securing data has given many benefits to small and large business alike. But where the benefits are there will be some risk present. Risk will be like lost of data or to protect data by any attack of security. According to a survey which took place in 2012 about security, the graph of crimes and security attacks is gradually going up every year. As we talk about security it’s a very huge field to do research on it. Security has many different units in a field. One can’t do a research on this topic. The topic I am going to discuss in my research is cyber security. Cyber security these days is important everywhere. Where ever the data is, we need cyber security to protect and maintain our data according to our requirements Cyber crime is far reaching, general and continually joined with different parts of the criminal natural gathering. It runs from the thievery of a specific's character to the complete interruption of a nation's Internet compromise in light of a huge trap against its masterminding and taking care of assets. The definite focus of cybercrime divisions is on information-the information which is stored electronically for resulting......

Words: 1426 - Pages: 6

Cyber Security in Business

...Cyber Security in Business Organizations Robin P. McCollin CIS 500 Information Systems – Decision Making Constance Blanson Fall 2014 The terms information security, computer security, and cyber security are all terms that are sometimes used interchangeably. To better understand the similarities and differences between the terms, one must first understand what exactly is being secured. For example, Information security is generally regarded as the protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide confidentiality, integrity, and availability. Computer security consists of measures and controls that ensure confidentiality, integrity, and availability of information system assets including hardware, software, firmware, and information being processed, stored, and communicated. Cyber security focuses on protecting computers, networks, programs and data from unintended or unauthorized access, change or destruction. Although each of the terms above are very specific in their security objectives, all three have a central theme, the protection of valuable information; data. Regardless of how the data is stored, why it is stored, where it is stored, or for how long it is stored, the protection of data is paramount and a major concern for governments, military, corporations, and financial institutions. As such, executives and industry professionals are consistently......

Words: 1513 - Pages: 7

Cyber Security in Business Organizations

...Cyber Security in Business Organizations 1 Cyber Security in Business Organizations David Hodges Strayer University Dr. Richard Brown May 14, 2015 Cyber Security in Business Organizations 2 Abstract This paper will assess the importance of information management in the insurance industry. How information management has help overall change the marketplace. The essential role of enterprise architecture in the industry will also be discussed and how it contributes to management decision making. Different data storage options for the industry will be discussed alone with the functions and which provides the best possible support for the industry overall. Cyber Security in Business Organizations 3 Due to the increased use of information and communication technologies in business organizations to today, the incidents of computer abuse has increase exponential. It has become increasingly difficult to protect customer information and company asset. Some of the challenges in security business organization have when it comes to breach includes the following: unauthorized users get access to computer systems and disclose confidential information, unauthorized users change the......

Words: 1200 - Pages: 5

Cyber Security: Cyber Terrorism

...Introduction Cyber security refers to the practices and processes that are used in technologies such as networks, computers, information and programs from damages by unwarranted entities (Ahmad, Yunos & Sahib, 2012). There are different attacks towards technology which may distort information or be used to create tension in an organization. Information stored in computers has some level of privacy and this depends on the level of sensitivity that such information may have towards that organization. Business strategies, political discussions and government documents are some of the documents that require a higher degree of privacy. However, there are individuals who cause deliberate attacks on the information systems of organizations and governments in order to unlawfully access information or distort the meaning of such data. The intention of cyber attacks has led to the classification of these attacks into particular classes. For example, we have cyber bullying and cyber terrorism. Under cyber bullying, the attackers use technology to abuse and intimidate their targets. Cyber bullying has been common through the presence of the social media where an individual will use pseudo-accounts to publish half truths about others with a bid to embarrass them. On the other hand, cyber terrorism involves the use of technology to access vital government sites in order to cause harm and fear in the society through terrorism activities. Brunst (2010) indicates that cyber terrorist......

Words: 1810 - Pages: 8

Cyber Security

...CYBER SECURITY INTRODUCTION It is also known as “Computer Security or IT security”. It is applied to the security of computer, computer network and the data stored and transmitted over them. Today the computer system are used in wide variety of “smart devices, including Smartphone’s,  televisions and tiny devices as part of the Internet of Things, and networks include not only the Internet and private data networks, but also Bluetooth, Wi-Fi and other networks. Computer security covers all the processes and mechanisms by which digital equipment, information and services are protected from unintended or unauthorized access, change or destruction and the process of applying security measures to ensure confidentiality, integrity, and availability of data both in transit and at rest. There are the various elements of the cyber security which are as: 1. Application Security 2. Information Security 3. Network Security 4. Mobile Security 5. Internet Security 6. Cyberwarfare One of the most problematic elements of cybersecurity is the quickly and constantly evolving nature of security risks. The traditional approach has been to focus most resources on the most crucial system components and protect against the biggest known threats, which necessitated leaving some less important system components undefended and some less dangerous risks not protected. "The threat is advancing quicker than we can keep up with it. The threat changes faster than our idea of the risk. It's no......

Words: 3559 - Pages: 15

Cis 105 Week 8 Individual Assignment Cyber Security

...CIS 105 Week 8 Individual Assignment Cyber Security http://homeworkfy.com/downloads/cis-105-week-8-individual-assignment-cyber-security/ CIS 105 Week 8 Individual Assignment Cyber Security Selectone of the follow scenarios and prepare a 700-1050-word paper. Scenario One James was traveling for his job. The Internet card provided by his company was not working and he had an important project due that day. James was in a small town about an hour away from the nearest Internet kiosk, so he decided to drive around a nearby suburb to see if he could find a wireless system he could borrow to send out his project. James found a wireless system without a security key and, after parking near the home with the system, uploaded the project. Afterward, just for fun, James peaked into the computer on the wireless system and found, to his dismay, some bank accounts and passwords. Think about how you would feel if James were parked outside your home, using your wireless network. Explain the following in 350 to 700 words: Before this class, what means, if any, were you employing to protect yourself in the cyber world? What security measures are available to the average computer user? What is missing from the system James borrowed? Which do you think are most important? How might you change your approach to online security in the future? Cite any resources used consistent withAPA guidelines. Scenario Two Research two available security systems that provide total network......

Words: 305 - Pages: 2

Cyber Security in Business

...Case Study 1: Cyber Security in Business Organizations Abstract This paper examines the importance of cyber security in business organizations and discovering better methods to combat cyber terrorism in the future. Data breaches in the work place have become an increased threat to personal privacy as well as to the economic livelihood of many organizations. In this paper we will further examine how a simple data breach almost brought the retail giant Target to the brink of destruction and provide detailed accounts of other recent data security breaches that have effected other business organizations and discuss what could be done to prevent them. Cyber Security in Business Organizations Modern global industries rely heavily on the data that they acquire to stay relevant in order to compete in a constantly moving world of technology. Protecting present and future data from potential cyber theft has become a vital need to the economic livelihood of today’s organizations. In today’s business world, organizations must prepare themselves for not only increased vulnerability attacks from exterior threats of cyber terrorist seeking to gain access to a company’s private data and resources but also have to take in account and be mindful of the interior threat of disgruntled employees whose mission is to expose or sale company sensitive or secret data for their own profitable gain. In today’s era of computing, cyber security can be described and defined in several ways...

Words: 1143 - Pages: 5

Cis 500 Week 6 Case Study 1 Cyber Security

...CIS 500 WEEK 6 CASE STUDY 1 CYBER SECURITY To purchase this visit here: http://www.activitymode.com/product/cis-500-week-6-case-study-1-cyber-security/ Contact us at: SUPPORT@ACTIVITYMODE.COM CIS 500 WEEK 6 CASE STUDY 1 CYBER SECURITY CIS 500 Week 6 Case Study 1 - Cyber Security in Business Organizations - Strayer University 2015 Version NEW Write a four to six (4-6) page paper in which you: 1. Determine the fundamental challenges that organizations face in general in regard to protecting organizational assets and information. 2. Specify the red flag(s) that Target overlooked or ignored before the retail attack and give your opinion as to why Target overlooked or ignored the red flag(s). 3. Determine the main actions that Target took after the breach occurred and evaluate the efficiency of such actions. More Details hidden... Activity mode aims to provide quality study notes and tutorials to the students of CIS 500 Week 6 Case Study 1 Cyber Security in order to ace their studies. CIS 500 WEEK 6 CASE STUDY 1 CYBER SECURITY To purchase this visit here: http://www.activitymode.com/product/cis-500-week-6-case-study-1-cyber-security/ Contact us at: SUPPORT@ACTIVITYMODE.COM CIS 500 WEEK 6 CASE STUDY 1 CYBER SECURITY CIS 500 Week 6 Case Study 1 - Cyber Security in Business Organizations - Strayer University 2015 Version NEW Write a four to six (4-6) page paper in which you: 1. Determine the fundamental challenges that organizations face in......

Words: 685 - Pages: 3

Cyber Security

...6 20 Cyber crime:Law Enforcement And E-Government Transnational Issues Individ ual Assignment #1 Leggett,Ronnell 3/3/13 2 Table Of Content Introduction ................................................................. 3-5 Current Government Interventions/ Methods............. 5-7 linpact/Effects .............................................................. 7-8 Private Industry Rcsponsibilit)' ............................... 8-9 Conclusion ........................................................................ 9-10 Reference Page ........................................................... 11 3 Introd uction Over the last several years we have witnessed many changes and transformations occur in tcclmology including advances in phone. television, and compu ter comm unication outlets. Being able to use and ma nipulate technology has now become an essential part of everyday lifo, this is especiall y important with the use of the World Wide Web and the plentiful resources it has to offer. With these new advances of technology we often find an apparent generation gap where more and more Americans arc born into new technology \'1hi lc others arc still trying lo figure it ou t. Most impo11 y. with these tech nological advances. crime has adapted to thi s new age as antl well. Consumers are pu t at new and higher risks when purchasi ng goods (Baker. 2006). Several decades ago the crimes reported by the news w1::re of a physical natu......

Words: 2550 - Pages: 11

Cyber Security

...Cyber security is a critical and growing issue in the world today. President Obama said this issue is, "one of the most serious economic and national security threats our nation faces" (Cybersecurity). The United States is one of the most computer dependent societies and has the most computer dependent military and intelligence agencies. With more and, more of our country being ran by technology we are at a bigger risk of attack. A cyber attack could be the most devastating attack our country has ever faced. An attack on America’s cyber infrastructure could cripple the country and put us at an even greater risk of a normal attack. FBI Director said “Counterterrorism — stopping terrorist attacks — with the FBI is the present number one priority. But down the road, the cyber threat, which cuts across all FBI programs, will be the number one threat to the country” (Paganini). The message is clear the cyber security threat we are facing today is a dangerous and growing threat that has serious offensive potential and is often difficult to detect or prevent. An attack on a nation’s critical infrastructure can be devastating and when you add the fact that cyber attacks often do not make themselves know until it is to late could make for a devastating first strike prior to an invasion. Cyber security is defined as measures taken to protect a computer or computer system (as on the Internet) against unauthorized access or attack. The term “cyber security threat”......

Words: 2041 - Pages: 9