INFS1602 Lecture Notes - Lecture 10: Cybercrime, Natural Disaster, Web Service

Target is the asset that is desired by the threat. What are the sources of threat: human error = accidental problems caused by both employees and non-employees (e. g. poorly written application programs and poorly designed procedures; physical accidents). Incorrect data modification: human error employees follow procedures incorrectly; system errors e. g. lost-update problem, computer crime hacking, disaster faulty recovery actions. Loss of infrastructure: theft/terrorise events and human accidents cause loss of infrastructure physical plant, equipment, data servers, disaster destroy data centres, advanced persistent threat = a sophisticated hack perpetrated by large organisations. Threats can be stopped/reduced by creating appropriate safeguards: reduce work efficiency by making common tasks more difficult. Find an effective trade-off between the risk of loss and the cost of safeguards. Follow organisational security directives and guidelines: consider security for all business initiatives. Technical safeguards involve the hardware and software components of an information systems.