TYPES OF SOFTWARE ATTACKS

. The Order pizza video shows a scenario where client private information is known to the retailer. However, the information seems to have been obtained illegally and without the consent of the client. The pizza joint representative uses the information at her disposal to overcharge the customer and to convince him to buy something he does not really need. Figure 7.2 shows the types of software attacks that are likely to occur. The private information obtained in the Order Pizza video could have been obtained through one of these methods. Specifically, the three most likely methods used are the phishing method, the spear phishing method, and the backdoor method.  The attacker seems to have the information only available to the customer himself.  This method of obtaining information cannot be encouraged. However, it will be persistent due to its profitability nature amid these hard economic times.
2. There are many potential problems that may arise from the way intranets and extranets are used in business. First, so many people are able to get access to information on the company network. If this information gets into the wrong hands, it could be abused and used to the disadvantage of the company. Second, the fact that it is accessible to many individuals in the company makes it vulnerable. Any one of the computers that have access to the network may be used to get access to get access to the network. It also makes it possible to perform acts that may even crash the system. Extranet crashes have even led to the collapse of companies. Third, hackers who get access to a computer network are able to access many of the computers that connected to the network. This puts a lot of personal information of the users at risk.

3. The SSL video is reassuring. Very often, consumers get themselves giving their most private information on the internet. Knowing this information cannot be used negatively is reassuring. It inspires trust and confidence on internet shopping and the like. However, the fact that my own computer can be attacked remains worrying. This is because information stored on my computer may be accessed and compromised. The information also falls short of the standards of trust required for everyone to feel free shopping online. Especially, there have been many cases of software attacks on companies that have private information.

4. Security while on the network is a worrying trend in many companies. Companies have been known to invest heavily on their security system compared to any other problems in the IT department. Companies that fail to do so remain vulnerable to collapse. Disaster recovery refers to the company’s ability plan on how to solve either accidental or intentional computer based problems. It should be documented to ensure that during the time of crisis, the entire company is on the same page. Disaster recovery is first implemented by ensuring everyone has a copy of the document so that they know which role they should play during the time of crisis.
Strategic planning also comes handy in dealing with software attacks. It comprises putting strategies in place to prevent misuse of company information. It also involves making it understood that every employee is responsible for any problems that may arise during his interaction with company information system (Weigold et al., 2008, p. xx).

5. Many companies have suffered software attacks in the past resulting in either losses or compromising consumer information. In December 2013, target retailers went through software attacks in which consumer information was stolen. Also, Facebook users have been suffering from hacks over time (Langweg & Snekkenes, 2014)

References

Langweg, H., & Snekkenes, E. (2014). A classification of malicious software attacks. doi:10.1109/PCCC.2004.1395194

Weigold, T., Kramp, T., Hermann, R., Höring, F., Buhler, P., & Baentsch, M. (2008). The Zurich Trusted Information Channel – An Efficient Defence Against Man-in-the-Middle and Malicious Software Attacks. doi:10.1007/978-3-540-68979-9_6