I Have Homework ( Word + power point )

Anonymous
timer Asked: Apr 8th, 2018
account_balance_wallet $20

Question description

IT530 - PROJECT

Project Description

Data breaches continue to be one of the biggest risks facing both public and private organizations. Generally, information technology including security technology has continued to improve over the years to secure organizational information assets. However, cyber-attacks have also gotten more complex and sophisticated thereby defeating cyber-defense systems and costing organizations. Below is a list of some of the companies that have suffered the largest data breaches in history:

  • Yahoo
  • Adult Friend Finder
  • eBay
  • Equifax
  • Heartland Payment Systems
  • Target Stores
  • TJX Companies, Inc.
  • Uber
  • JP Morgan Chase
  • US Office of Personnel Management (OPM)

Required:

  • Papers
  • Presentation
    • Project title & data breach description (5 pts)
    • Data breach impact and management role in mitigating cyber-risks (5pts)
    • Lessons learned and recommendations (10pts)
    • Proper use of cybersecurity concepts and terminology (5 pts)
    • Clear and coherent writing (5 pts)

Choose one company from the list above and write a paper describing impact of the data breach it suffered, information assets which were affected and how the cyber-attack succeeded. What was compromised for the cyber-attack to succeed (i.e. managerial controls, technical controls, etc.)? How much risk did that organization incur? Did the affected organization respond adequately to mitigate incident following the cyber-attack? How involved was the management team?

We discussed interesting topics in class like: the need for cybersecurity programs, legal and professional issues in cybersecurity, risk management, cybersecurity technology etc. Using that knowledge, what lessons can be learned from that data breach? What major recommendations can you make to improve the cybersecurity program of that organization?

The paper should be 5-7 pages in APA format, font-size 12, in Verdana font and 1.5 line spacing. Your references should be among the 5-7 pages.

Prepare a 7-minute presentation of the data breach you researched, its impact, a critique of the state of cyber-security program that was comprised and major recommendations suggesting improvements in that organization’s cyber-security program. I need 6-10 slides

Rubric

1. Project Report (30pts)

2. Paper Presentation (20 pts)

  • Speaks clearly and uses appropriate body language (5 pts)
  • Well defined project problem (5 pts)
  • Critique on management role and major recommendations (5 pts)
  • Meets time specifications of 5 minutes (5 pts)

Tutor Answer

JesseCraig
School: UT Austin

Thank you
I have done your work. Thank you.

Surname1
Surname:
Institution:
Professor:
Course:
Date:

EQUIFAX DATA BREACH
Introduction
Data breach is the process by which the information is accessed from
the system of an organization or individual without authorization. In other
words, it implies stealing of information without the knowledge of the owner
and is normally done through hacking. Due to the advancement in technology,
data breaches have become rampant for both small or large organizations and
private or public organizations. The data that is always stolen during such an
incident is sensitive information like customer data, credit card numbers,
passwords, organization’s secrets etc. Equifax which is an agency that deals
with reporting of consumer credit suffered the incidents of the data breach on
several occasions with the massive data breach occurring in 2017.
Impact of the data breach
The hackers accessed the Equifax’s system and stole the personal
information of more than 143 million individual that Equifax had collected. The
data breach that occurred in 2017 affected about 147.9 million Americans but
with some being the British and Canadian citizens ("Nearly Half Of US Citizens
Hit By Massive Equifax Breach" 1-3). The type of personal data that was stolen
by the hackers includes tax identification numbers, names of the customers,
data of births, social security numbers, numbers of driving license, home
addresses etc.

Surname2
This attack affected the operations of Equifax and its reputation declined
drastically since it lost customer confidence since most of them were scared
of this incident. This breach led to the change in leadership of Equifax due to
the resignation of Richard Smith who was the chief executive by then. Equifax
was also sued for the breach and an investigation was carried out concerning
the breach.
The affected information assets
The information assets that might have been affected by the 2017
massive Equifax’s data breach are the Data Assets, Business Entity Data,
System Transaction Data, End User Profile Data, Data Contributor, and
Information Management Data Controls.
How the cyber-attack succeeded & what was compromised
Equifax made an announcement about the disturbing information for the
consumers in September 2017. This was the beginning of the cybersecurity
failure that enabled the hackers to gain access to the personal information of
more than 143 million individuals. The Hackers accessed the customers’
addresses, names, Social Security numbers, credit card numbers, birth dates
etc. and they also managed to get the numbers of driving licenses of some
customer.
Since Equifax handles voluminous data due to a large number of the
customers, this makes it a potential target for the hackers. This is because
Equifax has several systems that handle this data and it is quite a challenge
to closely monitor and safeguard each system (Luszcz 5-8). For instance, in
2016, the hackers accessed the information on salaries and taxes from W-2s.
The Equifax organization utilizes an open-source system known as the
Apache Struts as its web app for handling online disputes. This platform was
vulnerable to cyber-attack. Equifax organization was warned about the

Surname3
vulnerability of Apache Struts in March 2017, which was two months prior to
the breach. However, the agency failed to take the necessary actions about
the alert such as applying the available patch. In addition, the company
conducted some vulnerability scans, which declined to detect the flaws in the
system. This gave the hackers an opportunity to launch an attack. By the time
of the discovery of the breach, the hackers had already accessed the
information from several databases and formulated over thirty entrances into
Equifax’s systems. Therefore, the failure by Equifax to update its system after
the detection of the vulnerability contributed greatly to the data breach that
occurred on September 2017.
Additionally, the security of the system was compromised when the
company failed to take the appropriate action after receiving the vulnerability
alerts. This provided an opportunity to the hackers to exploit the system and
access the confidential data.
Risks incurred by the organization
The Equifax Company incurred several risks as a result of the 2017
massive cyber-attack. Firstly, the data breach that occurred in September
2017 exposed the Equifax’s customers to more fraud. This is because a lot of
personal and confidential information such as the social security numbers were
stolen by the hackers from Equifax’s system. Thus, since the hackers had that
information at hand, they can utilize it to conduct some criminal activities such
as fraud...

flag Report DMCA
Review

Anonymous
Thanks, good work

Similar Questions
Hot Questions
Related Tags

Brown University





1271 Tutors

California Institute of Technology




2131 Tutors

Carnegie Mellon University




982 Tutors

Columbia University





1256 Tutors

Dartmouth University





2113 Tutors

Emory University





2279 Tutors

Harvard University





599 Tutors

Massachusetts Institute of Technology



2319 Tutors

New York University





1645 Tutors

Notre Dam University





1911 Tutors

Oklahoma University





2122 Tutors

Pennsylvania State University





932 Tutors

Princeton University





1211 Tutors

Stanford University





983 Tutors

University of California





1282 Tutors

Oxford University





123 Tutors

Yale University





2325 Tutors