28 Mar When discussing the overall security of the information infrastructure, one of the primary focuses has always been the logical security imposed by device configuration, passwords, and policies
When discussing the overall security of the information infrastructure, one of the primary focuses has always been the logical security imposed by device configuration, passwords, and policies. However, one of the keys to making the overall process function successfully is the integration between the logical security and the physical security of the environment. We have already learned some of the problems associated with social engineering and phishing attacks (Module Two) and about the need to have strong personnel and data protection policies along with the need for business continuity planning (Module Three), so now we are going to discuss how these previously discussed controls will work in coordination with physical security.
For this week’s discussion, review the list of major cyber incidents that have occurred recently on the Center for Strategic & International Studies (CSIS) website.
https://www.csis.org/programs/strategic-technologies-program/significant-cyber-incidents
Choose one of these incidents, and address the following questions in your initial post:
Describe the incident, what happened, and the potential impact.
Is this an incident where social engineering or phishing potentially had an impact? Why or why not?
What security measures could have prevented the incident?
