CYB 250 Stepping Stone One-Emmanuel Ekanem.docx - CYB 250 Stepping Stone One Template Howard Threat Model Incident Target Breach Sony Breach Attackers

CYB 250 Stepping Stone One-Emmanuel Ekanem.docx - CYB 250...

This preview shows page 1 - 3 out of 5 pages.

CYB 250 Stepping Stone One Template Howard Threat Model Incident Target Breach Sony Breach OPM Breach Attackers Professional criminals: Taylor Huddleston, Ruslan Bondars (Scan4you) Professional criminals: Terrorist group posing with the name Guardians of the Peace Unknown but the FBI believes this breach is linked to Yu Pingan and China Tools Script or program: Citadel Trojan Distributed tool: malware Distributed tool: malware Vulnerability Poor partitioning of Target’s network, lack of security within their network and between various networks, deficient passwords on their system accounts and servers, and storage of sensitive data on their website. Though not confirmed by Sony, we deduce that the company was vulnerable because of a combination of weak password usage and deficient server security. Lack of an active directory privilege escalation technique to get root access, and two or multifactor authentication process.
Image of page 1
Action Multiple: Probe, scan, bypass, copy, read and steal. Multiple: Probe, scan, bypass, copy, read and steal Multiple: Probe, scan, bypass, copy, read, steal and authenticate Target Multiple: Accounts, data, networks (internal and external).
Image of page 2
Image of page 3

You've reached the end of your free preview.

Want to read all 5 pages?

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

Stuck? We have tutors online 24/7 who can help you get unstuck.
A+ icon
Ask Expert Tutors You can ask You can ask You can ask (will expire )
Answers in as fast as 15 minutes