Please enable JavaScript.
Coggle requires JavaScript to display documents.
SECURE MOBILE COMPUTING CHAPTER 1 (PART 2) - Coggle Diagram
SECURE MOBILE
COMPUTING CHAPTER 1
(PART 2)
Potential Risk of Information System Security
Loss of Data Due to Shadow IT
Refers to information technology systems used within the organization without the knowledge of the IT department. It also did not back up by the organization and may cause loss of data.
Poor Security Policies Compromise Trade Secrets
Poor policies such as a single factor password may be used by hackers as an entry point to steal the data.
Data Heists Led by Insider Threats
Social engineering is an example of technique that uses human psychology to trick individuals into divulging authorization information such as passwords.
Phishing Schemes Lead to Business Email Compromise (BEC)
It uses media channels such as email, telephone or text messaging to send legitimate-looking messages with the intention to trick individuals into revealing sensitive information such as credit card details and passwords.
Data Theft via Third-Party Vendors
Majority company use cloud to migrate their digital assets, third-party is an open source components so it remain a critical threat
Terms in Information System Security
Accidental data loss
Data loss is an error condition in information systems in which information is destroyed by failures or neglect in storage, transmission, or processing.
Data disclosure
The voluntary sharing of any or all the information is considerated relevant to given situation.
Information warfare
The use of information, and attacks on information, as a tool of warfare.
Data modification
Modifying the actual data stored in system
Unauthorized disclosure
Private data is released to an individual who is not authorized to see/receive it.
Data availability
The process of ensuring that data is available to end users and applications when and where the need it.
Information theft
A crime where the criminals impersonates individuals or company , usually for financial gain via network.