Please enable JavaScript.
Coggle requires JavaScript to display documents.
Threats to data System attacks - Coggle Diagram
Threats to data System attacks
Reasons why systems are attacked
Financial gain
Direct gain
The attacker directly steals money/information during the attack, which will lead to profit
Indirect gain
Attackers attempt to extort businesses with forms of attack such as ransomware, in order to threaten the company to pay them for the sensitive information they stole
Personal attack
A targetted attack on an individual for reasons such as their beliefs, or employees on companies they feel mistreated by
Industrial espionage
Gain unauthorised information on rival businesses in order to give your business an advantage, as you'd be one step ahead of rival businesses
Disruption
Attacks may occur with the purpose of disrupting an organisation's service to benefit either financially, or to personal, political or social reasons.
Fun/challenge
It can allow people to gain experience for future cyber-attacks, overcome personal goals of beating an organisation’s cybersecurity measures and get recognition from peers in their community
Data/information theft
Attacks may occur with the purpose of stealing data, usually this is customer, personal or financial data stored by the company.
Impact of a security breach
Financial loss
Businesses may lose money from theft of banking details or a loss of profit after there's been damage to public image, or through industrial espionage, which gives rivals an advantage
Reduction in productivity
Attacks such as data theft or denial of service attacks can prevent a business from performing their daily operations, and slow down the work done
Damage to public image
Attackers may cause customers to view a company negatively, to cause a loss of customers, panic or to create a political statement
Downtime
An attack may cause system failure, where it goes down completely, often as a result of malicious payload disruptive enough where the service must be shut down manually, or servers are taken offline
Data loss
This could be due to data theft or deleted data due to malicious software like a virus
Legal action
Organisations are legally obliged to ensure the protection of individuals' data and not misused. If data is harmed during an attack, the organisation may be liable for huge fines under the Data Protection Act 2018