Computer Incidents and Productivity

Questions and Answers

What is a major reason why many problems arise in business environments?

Lack of employee training

Not verifying users' identities or authorization (correct)

Inadequate IT infrastructure

Insufficient budget for security measures

What is a consequence of the shift from client-server to peer-to-peer environments?

Improved security

Reduced system maintenance

Increased system complexity (correct)

Enhanced user experience

What do companies need to do to keep up with the pace of technological change?

Invest in new hardware and software

Perform an ongoing assessment of new security risks (correct)

Implement a fixed security strategy

Hire more IT personnel

What is a common problem faced by help desks in business environments?

Sharing of login IDs and passwords

What is a major factor contributing to the prevalence of computer incidents?

Higher computer user expectations

What is a characteristic of modern business environments?

Moving towards e-commerce

What is the primary purpose of Step 2 in the security risk assessment process?

To identify the loss events or risks

What is the primary goal of Step 5 in the security risk assessment process?

To mitigate threats and reduce their impact

Why do organizations typically focus on threats with a high frequency and impact?

Because they have a high frequency and impact

What is the primary purpose of assessing the frequency of events in Step 3?

To determine the likelihood of each potential threat

What is the consequence of a threat that has a high impact on the organization?

It could keep the organization from carrying out its mission for a lengthy period of time

What is an example of how to mitigate a threat, as mentioned in Step 5?

Installing virus protection on all computers

What is the primary goal of implementing a multilayer process for managing security vulnerabilities?

To identify and address security vulnerabilities

Which type of attack is characterized by a flood of traffic to a website or network in an attempt to overwhelm it?

Distributed denial-of-service attack

What is the term for a person who uses their legitimate access to a computer system to cause harm or commit fraud?

Malicious insider

Which of the following is a type of malware that disguises itself as a legitimate program?

Trojan horse

What is the role of computer forensics in fighting computer crime?

To analyze evidence in a court of law

Who is responsible for leading the effort to implement security measures in an organization?

IT department

What is the primary function of an Intrusion Detection System (IDS)?

To monitor system and network resources and notify security personnel of potential threats

What should be done to prevent attacks by malicious insiders?

Delete computer accounts, login IDs, and passwords of departing employees and contractors

What is the main goal of the Department of Homeland Security (DHS)?

To secure critical infrastructure and information systems

What should be prioritized when fixing vulnerabilities?

High-impact vulnerabilities first

What is the purpose of an antivirus software?

To scan for specific virus signatures

What is a security audit intended to evaluate?

Whether an organization has a well-considered security policy in place

What is a major security concern for companies?

Malicious insiders

What type of fraud involves adding extra money to an approved payment?

Collusion fraud

What is a common way that frauds are discovered?

Chance discovery

What is an example of a type of fraud involving bidding processes?

Bid rigging

What is a consequence of collusion between an employee and an outsider?

All of the above

What is a type of fraud that involves stealing company assets?

Theft of assets

Study Notes

Computer Incidents and Contributing Factors

• Higher expectations from computer users lead to increased problems in business environments.
• Help desks encounter issues such as failing to verify users' identities and unauthorized actions.
• User behaviors like sharing login IDs and passwords amplify security risks.

Risks Associated with System Changes

• Transitioning from client/server to peer-to-peer environments introduces new vulnerabilities.
• Rapid advancements in e-commerce, mobile computing, and collaborative systems heighten security challenges.
• Organizations must continuously assess new security risks and adapt to technological changes.

Security Risk Assessment Steps

• Identify potential loss events or threats, including distributed denial-of-service attacks and insider fraud.
• Assess the frequency of these events; some threats, like insider fraud, have higher likelihoods.
• Evaluate the potential impact of each threat on organizational operations; severe threats may disrupt missions for extended periods.
• Determine mitigation strategies to reduce the likelihood or impact of threats, such as installing antivirus software.

Common Computer Exploits

• Frequent types of computer exploits include:
  • Viruses and worms
  • Trojan horses
  • Distributed denial-of-service attacks
  • Rootkits, spam, phishing, spear-fishing, smishing, and vishing.

Types of Perpetrators

• Main perpetrators of computer incidents include:
  • Hackers and crackers
  • Malicious insiders and industrial spies
  • Cybercriminals and hacktivists
  • Cyberterrorists.

Security Vulnerability Management

• A multilayered approach is essential to manage security vulnerabilities, involving:
  • Threat assessment and identifying vulnerability actions.
  • User education to promote safe practices.
  • IT leadership in implementing security policies, procedures, and technology.

Preventative Measures

• Use corporate firewalls to restrict network access according to organizational policies.
• Deploy Intrusion Detection Systems (IDS) to monitor and alert on security breaches.
• Implement antivirus software to detect and eliminate specific viruses based on signatures.

Addressing Insider Threats

• Promptly deactivate accounts of departing employees and contractors to mitigate insider threats.
• The Department of Homeland Security (DHS) focuses on securing critical infrastructure and addressing internet security threats.
• High-impact vulnerabilities should be prioritized for remediation.
• Conduct regular IT security audits to ensure effective security policies are in place and followed.

Fraud Risks from Malicious Insiders

• Firms face numerous fraud risks from insiders, including:
  • Diversion of company funds and asset theft.
  • Fraud related to bidding processes and payment inaccuracies.
• Collusion between employees and outsiders is a common fraud mechanism, often discovered accidentally.

Description

This quiz explores the reasons behind the prevalence of computer incidents in business environments and their impact on productivity. It covers the challenges faced by help desks and the expectations of computer users.