430 DQ2

profileRiri01
430DQ2.docx

DQ2 100-150 words

Many organizations are found purchasing, installing, and setting up services using out-of-the-box configurations and default settings. Research and briefly describe a current incident (within the past year) where an organization was exploited because of a lack in security best practices, updated patches, secure configurations, etc. What would you recommend organizations establish to ensure long-term protection of systems and applications?

REPLYY TO RESPONSES. 75-100 WORDS

A Destiny Carlisle

Hello Class,

Does anyone remember the Facebook data breach in 2021? It affected over 500 million people around the world, this attack didn’t have a direct target, but it exposed a lot of people’s information leaving people in a very vulnerable state due to the breach. Since Facebook started in 2004, it wasn’t expected to become as popular as it has been, also last as long as it has. Its other competitors like Myspace, xyang ,etc fizzled out over time and are not in much use. This breach was discovered by an white hat company known as Symantec. Symantec is a company that is a partner company or Norton, its background or possible infrastructure is ran by Broadcom, which is an integrated information tech with cybersecurity. Does this company offer the coverage needed to protect your data? It seems that they specialize in just that and that is what Facebook has now as for not only web security but for overall data protection.

B Yamil Santana

Good Morning Class,

In 2021 Flagstar bank was the victim of a ransomware attack that affected the bank and customers by the stolen social security numbers of over 1.5 millions individuals. This particular incident doesn't go into detail on how or who it was that caused this incident it just tells us that is was because of ransomware. Companies should always be vigilant in what they are doing in their daily jobs and also with what they are receiving from emails, phone calls and more. Human error is a big cause in a lot of data breaches and this can be mitigated but i don't think it can be stopped because this can happen to anyone.

C Joshua Skinner

Class,

On September 16, American airlines notified customers and legal officials that they had discovered a breach in July of 2022. American Airlines has described the number of people affected as "very small"; per one legal filing, it would appear 1,708 customers and employees data was exposed in the incident (Heiligenstein et al., 2022). The breach appears to have been the result of a phishing attack. Phishing attack is when attackers attempt to trick users into doing "the wrong thing" such as clicking a bad link that will download malware, or direct them to a dodgy website. There are several types of phishing attacks to include email, spear, whaling, smishing and angler. Some long term methods that can be introduced to protect against phishing attack's is to utilize security software, implement multi-factor authentication, and back up data on a regular or weekly basis depending on the organization.