Académique Documents
Professionnel Documents
Culture Documents
Adam R. Stoker
CSIA 310
– Response actions performed: There was no effective incident response due to the lack
of a centralized team for network incidents and computer security incidents. (e.g., shut
off host, disconnected host from network)
– Other organizations contacted: No other organizations were contacted.
3. Cause of the Incident: The single firewall does not provide adequate protection and was
misconfigured. The lack of intrusion detection and anti-malware software did not block
the unauthorized USB keys and was unable to detect the malware. Employees were
careless with physical access security.
4. Cost of the Incident: The loss of the drone system source code and test equipment cost
Sifers-Grayson $1.2 million in research and development cost and loss of potential
contracts. The recovery efforts to scan all devices, reimage affected workstations, and
restore servers from backups will take approximately 274 person hours at $100 per hour,
totaling $27,400.
5. Business Impact of the Incident: The financial loss as a result of the incident would be
significant. Business operations would be halted or severely limited during the attack and
recovery. If news was spread of the successful attack due to the company’s negligence,
the reputation of Sifers-Grayson would be negatively impacted.
6. General Comments: