Assume a scenario where the hackers gained access to information through malware on Point-of-Sale (POS) systems...

60.1K

Verified Solution

Question

Programming

Assume a scenario where the hackers gained access to informationthrough malware on Point-of-Sale (POS) systems of more than millioncredit and debit card. The firewall had captured the first malwarecode and an alert was issued which was ignored. The hackers starteddownloading the collected data. The cyber criminals have hacked thesystem to gain credit and debit card information.
1. Explain in your own words what happened in the abovediscussed data breach. [5 Marks]
2. Identify and experience the type of attack experienced in theabove scenario [2 Marks]
3. The stolen credentials alone are not enough to access thecompanyâ€™s POS devices. What other means can the hackers acquire toallow them to navigate the companyâ€™s network and deploy themalware. [3 Marks]
4. What would have hackers done for privilege escalation? [2Marks]
5. The organization admitted that they ignored many alerts fromtheir network security devices because of alert overload. If youare the organizationâ€™s Chief Technical Officer (CTO), what wouldyou do to reduce the problem of alert overload? [3 Marks]
6. The security experts criticize the organization for failingto isolate sensitive sections of their networks from those moreeasily accessible to outsiders. As a CTO, please propose a feasiblesolution to segment and categorize your networks and resources. [5Marks]

Answer & Explanation Solved by verified expert

4.1 Ratings (493 Votes)

Solution 1 The hackers have gained access to the consumers POS assets such as bank credit card and debit card details which the consumer usually enters while doing any transaction Key logging malware is the main reason for this attack and these attacks are mainly remote This is usually targeted against all size retailers because of the internet enablement of the POS assets A firewall is a network security device which helps in securing the network and its purpose is to establish a barrier between the internal network and incoming traffic from external sources such as the internet in order to block malicious traffic like viruses and hackers But in this case as the alert generated by the firewall was ignored and no necessary action was taken so the hackers were able to access all the information of the POS assets 2 This type See Answer

Get Answers to Unlimited Questions

Join us to gain access to millions of questions and expert answers. Enjoy exclusive benefits tailored just for you!

Membership Benefits:

Unlimited Question Access with detailed Answers
Zin AI - 3 Million Words
10 Dall-E 3 Images
20 Plot Generations
Conversation with Dialogue Memory
No Ads, Ever!
Access to Our Best AI Platform: Flex AI - Your personal assistant for all your inquiries!

Become a Member