0% found this document useful (0 votes)

15 views2 pages

Assignment 1

MIS 300

Uploaded by

Faheem Paracha

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

15 views2 pages

Assignment 1

MIS 300

Uploaded by

Faheem Paracha

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 2

Insider Attack Scenario

Insider Threat via Student Worker

 Attack Description:
A student worker at Rocky Summit University (RSU) exploits their system access to manipulate
grades and tuition records.
 Attack Steps:
1. Gaining Access: The student worker is granted limited administrative privileges as part
of their job.
2. Privilege Escalation: Exploits misconfigured access controls to increase privileges.
3. Data Manipulation: Alters grades and adjusts tuition records for personal benefit.
4. Covering Tracks: Deletes log files and creates fake accounts for future access.
 Assumptions:
o Access controls are misconfigured, allowing privilege escalation.
o Logging mechanisms are inadequate for detecting unauthorized changes.
External Attack Scenario:
Phishing and VPN Exploitation
 Attack Description:
A remote attacker targets RSU employees and students through phishing emails to steal
credentials and access the internal network via the VPN.
 Attack Steps:
1. Reconnaissance: Attacker collects email addresses from public sources.
2. Phishing Attack: Sends emails impersonating RSU’s IT department to trick users into
providing credentials.
3. VPN Exploitation: Uses stolen credentials to access RSU’s internal network.
4. Privilege Escalation & Data Exfiltration: Exploits system vulnerabilities to obtain
administrative rights and extract sensitive student and faculty data.
5. Covering Tracks: Deletes logs to avoid detection.
 Assumptions:
o VPN access is based solely on username and password without Multi-Factor
Authentication (MFA).
o Users are not adequately trained to recognize phishing attempts.
Combined Countermeasures:
1. Security Policy:
o Mandatory Multi-Factor Authentication (MFA): Enforce MFA for all remote access to
prevent unauthorized logins.
2. Management Action:
o Security Awareness Training: Conduct regular training sessions to help students and
staff recognize phishing attempts and understand insider threats.
3. Technical Options:
o Role-Based Access Control (RBAC): Limit access permissions based on job roles,
minimizing privilege misuse.
o Intrusion Detection Systems (IDS): Monitor network traffic for unusual activity to detect
unauthorized access and data exfiltration attempts.
o Audit Logging and Monitoring: Implement comprehensive logging and monitoring to
detect suspicious activities, including privilege escalation and data manipulation.
Rationale:
 MFA prevents unauthorized VPN access even if credentials are compromised.
 Security Awareness Training reduces the likelihood of successful phishing attacks.
 RBAC and IDS limit access and detect abnormal behavior, reducing the risk of both insider and
external threats.
 Audit Logging enhances traceability and accountability, allowing quick response to suspicious
activities.

SECOPS CNSP Exam Preparation Material
100% (1)
SECOPS CNSP Exam Preparation Material
17 pages
DIS Syllabus
No ratings yet
DIS Syllabus
2 pages
Crypt Analysis Handout
No ratings yet
Crypt Analysis Handout
24 pages
Edu User Name and Password For Educational Purpose 6
No ratings yet
Edu User Name and Password For Educational Purpose 6
3 pages
Incident Response Workflows
100% (1)
Incident Response Workflows
62 pages
Beginner Guide To Penetration Testing
No ratings yet
Beginner Guide To Penetration Testing
3 pages
Unit 2 Cybersecurity
No ratings yet
Unit 2 Cybersecurity
96 pages
L4 - Security - August 11, 2024 - Ruman Neupane
No ratings yet
L4 - Security - August 11, 2024 - Ruman Neupane
17 pages
CW3551 Syllabus
No ratings yet
CW3551 Syllabus
2 pages
Web Application Firewalls 1st Edition Chad Russell Download
100% (1)
Web Application Firewalls 1st Edition Chad Russell Download
53 pages
Attacks
No ratings yet
Attacks
4 pages
Kenya Stanley Ch8 HMWK Acc564
100% (1)
Kenya Stanley Ch8 HMWK Acc564
3 pages
PCI Compliance The Definitive Guide 1st Edition Abhay Bhargav Download
100% (2)
PCI Compliance The Definitive Guide 1st Edition Abhay Bhargav Download
61 pages
Case Study Based Assessment - Core Domains
No ratings yet
Case Study Based Assessment - Core Domains
12 pages
Lecture 1
No ratings yet
Lecture 1
21 pages
Practitioner Datasheet
No ratings yet
Practitioner Datasheet
7 pages
SOC Analyst Technical Assessment
No ratings yet
SOC Analyst Technical Assessment
7 pages
Strengthening IT Security at Colombo Advanced College
No ratings yet
Strengthening IT Security at Colombo Advanced College
13 pages
Security Awareness Presentation: Florida International University Cheryl Lyn Granto, IT Security Officer
No ratings yet
Security Awareness Presentation: Florida International University Cheryl Lyn Granto, IT Security Officer
41 pages
IRP Assignment
No ratings yet
IRP Assignment
2 pages
IAA202 - LAB1 - SE140442: RISK, Threats and Vulnerabilities
No ratings yet
IAA202 - LAB1 - SE140442: RISK, Threats and Vulnerabilities
11 pages
CN MCQ Part 3
No ratings yet
CN MCQ Part 3
9 pages
Completed Example of An Incident Report Analysis
No ratings yet
Completed Example of An Incident Report Analysis
2 pages
Completed Example of An Incident Report Analysis
No ratings yet
Completed Example of An Incident Report Analysis
2 pages
Unit 2 Cybersecurity
No ratings yet
Unit 2 Cybersecurity
96 pages
Viruses
No ratings yet
Viruses
3 pages
Jual Beli DataBase
No ratings yet
Jual Beli DataBase
23 pages
Adv Sec
No ratings yet
Adv Sec
3 pages
Cs2hep Icalepcs RM
No ratings yet
Cs2hep Icalepcs RM
17 pages
Report
No ratings yet
Report
5 pages
Project
No ratings yet
Project
1 page
Ias - Sa1
No ratings yet
Ias - Sa1
20 pages
Notes
No ratings yet
Notes
8 pages
Report
No ratings yet
Report
6 pages
CNS Assignment
No ratings yet
CNS Assignment
23 pages
Case Studies
No ratings yet
Case Studies
5 pages
2024 K12 Six 5 Playbooks Attendee Handout
No ratings yet
2024 K12 Six 5 Playbooks Attendee Handout
20 pages
NSM Handbook
No ratings yet
NSM Handbook
50 pages
Activity 2
No ratings yet
Activity 2
9 pages
Security 102
No ratings yet
Security 102
3 pages
Security 104
No ratings yet
Security 104
3 pages
Introduction
No ratings yet
Introduction
11 pages
Insider Threats in Cyber Security: NAME: Y.Praneeth Kumar ROLL NO: 21011A0555
No ratings yet
Insider Threats in Cyber Security: NAME: Y.Praneeth Kumar ROLL NO: 21011A0555
12 pages
Completed Example of An Incident Report Analysis
No ratings yet
Completed Example of An Incident Report Analysis
2 pages
Security of Capital College Persentation
No ratings yet
Security of Capital College Persentation
8 pages
Tran Quoc Hung 134
No ratings yet
Tran Quoc Hung 134
2 pages
Kheti Bank - Interview Questions & Answers-22!11!2024-0201
No ratings yet
Kheti Bank - Interview Questions & Answers-22!11!2024-0201
7 pages
Bitwarden Password Manager 2
No ratings yet
Bitwarden Password Manager 2
10 pages
Book Report
No ratings yet
Book Report
4 pages
Exercise For SOC - Analysis and Incident Response Flow
No ratings yet
Exercise For SOC - Analysis and Incident Response Flow
24 pages
IBA Security Threats & Solutions
No ratings yet
IBA Security Threats & Solutions
2 pages
Scepter
No ratings yet
Scepter
19 pages
Understanding Computer and Internet Crime
No ratings yet
Understanding Computer and Internet Crime
7 pages
Week 5 Assignment
No ratings yet
Week 5 Assignment
3 pages
Lab6 IAP301 IA1802 HE172600
No ratings yet
Lab6 IAP301 IA1802 HE172600
5 pages
Cybersecurity Incident Report 8
No ratings yet
Cybersecurity Incident Report 8
4 pages
Activity 1 - Presentation - Security Threats and Countermeasures
No ratings yet
Activity 1 - Presentation - Security Threats and Countermeasures
3 pages
Lateral Movement Analysis
No ratings yet
Lateral Movement Analysis
25 pages
Incident Report Analysis
No ratings yet
Incident Report Analysis
2 pages
Cybersecurity MCQs and Short Answers
No ratings yet
Cybersecurity MCQs and Short Answers
4 pages
Buckshot Roulette ARG Failed Passwords.
No ratings yet
Buckshot Roulette ARG Failed Passwords.
75 pages
Assignment 1
No ratings yet
Assignment 1
4 pages
Beruan, Marc Lawrence M
No ratings yet
Beruan, Marc Lawrence M
2 pages
Insider Threat
No ratings yet
Insider Threat
2 pages
De La Salle Insider Threats Manual
No ratings yet
De La Salle Insider Threats Manual
4 pages
4-2 Assignment Facility Impact On Inmate
No ratings yet
4-2 Assignment Facility Impact On Inmate
3 pages
Module Four Assignment CJ-210
No ratings yet
Module Four Assignment CJ-210
3 pages
Aiba Ia-2 Case Study
No ratings yet
Aiba Ia-2 Case Study
7 pages
Discussion 2 + 3
No ratings yet
Discussion 2 + 3
2 pages
Discussion 5
No ratings yet
Discussion 5
2 pages
Module Five Assignment CJ-210
No ratings yet
Module Five Assignment CJ-210
2 pages
Module Eight Practice Activity CJ-210
No ratings yet
Module Eight Practice Activity CJ-210
2 pages
Cyber Ops Summary
No ratings yet
Cyber Ops Summary
5 pages
VND - Openxmlformats Officedocument - Wordprocessingml.document&rendition 1 1
No ratings yet
VND - Openxmlformats Officedocument - Wordprocessingml.document&rendition 1 1
10 pages
Short Paper 6-2 DR
No ratings yet
Short Paper 6-2 DR
6 pages
Metro Node - Metro Node Admin Procedures-Manage
No ratings yet
Metro Node - Metro Node Admin Procedures-Manage
9 pages
2 Assignment
No ratings yet
2 Assignment
10 pages
Information Security
No ratings yet
Information Security
12 pages
Lab #6 - Assessment Worksheet Elements of A Remote Access Domain Policy
No ratings yet
Lab #6 - Assessment Worksheet Elements of A Remote Access Domain Policy
3 pages
Security File
No ratings yet
Security File
58 pages
Unit III Essay
No ratings yet
Unit III Essay
7 pages
Gupta Abhi Discussion File
No ratings yet
Gupta Abhi Discussion File
2 pages
An Integrated Cyber Security Risk Management Framework For Online Banking Systems
No ratings yet
An Integrated Cyber Security Risk Management Framework For Online Banking Systems
20 pages
Pharma Caselet Memo Assignment
No ratings yet
Pharma Caselet Memo Assignment
2 pages
Ehical Hacking Online Bits
No ratings yet
Ehical Hacking Online Bits
19 pages
Unit VIII Assignment
No ratings yet
Unit VIII Assignment
4 pages
Unit VII Essay
No ratings yet
Unit VII Essay
4 pages
MTCE4 OCIM FACT Sheet
No ratings yet
MTCE4 OCIM FACT Sheet
20 pages
ASSIGNMENT 2 - INS - Mid Question Bank
No ratings yet
ASSIGNMENT 2 - INS - Mid Question Bank
6 pages
LLM - Data - Leakage - Report - (1) (raHUL JANGIR)
No ratings yet
LLM - Data - Leakage - Report - (1) (raHUL JANGIR)
9 pages
ITAC Audit Checklist
No ratings yet
ITAC Audit Checklist
9 pages
Topic 7 Quiz - pdf-2
No ratings yet
Topic 7 Quiz - pdf-2
1 page
Topic 7 Quiz - pdf-13
No ratings yet
Topic 7 Quiz - pdf-13
1 page
Topic 6 Quiz - pdf-11
No ratings yet
Topic 6 Quiz - pdf-11
1 page
Topic 6 Quiz - pdf-14
No ratings yet
Topic 6 Quiz - pdf-14
1 page
SOP For Confidentiality and Data Protections
No ratings yet
SOP For Confidentiality and Data Protections
3 pages
Data Protection and Student Privacy in UAE
No ratings yet
Data Protection and Student Privacy in UAE
2 pages
HCS412 Test1 (R216979M)
No ratings yet
HCS412 Test1 (R216979M)
9 pages
Cybersecurity Tips for IT Leaders
No ratings yet
Cybersecurity Tips for IT Leaders
5 pages
2-1 Assignment Effects of IdeologiesPurposes and Sentencing Structures
No ratings yet
2-1 Assignment Effects of IdeologiesPurposes and Sentencing Structures
3 pages
Online Monitoring and Prevention of Internal Security Threats in Academic Campuses
No ratings yet
Online Monitoring and Prevention of Internal Security Threats in Academic Campuses
6 pages
CJ 210 Project Template
No ratings yet
CJ 210 Project Template
2 pages
CJ 210 Module Four Assignment Template
No ratings yet
CJ 210 Module Four Assignment Template
1 page
Discussion Six 210
No ratings yet
Discussion Six 210
1 page
CJ 210 Module Four Practice Activity Template
No ratings yet
CJ 210 Module Four Practice Activity Template
1 page
Unit III Journal
No ratings yet
Unit III Journal
2 pages

Assignment 1

Uploaded by

Assignment 1

Uploaded by

Insider Attack Scenario

Insider Threat via Student Worker

You might also like