Cyber Security and Incident Management

Cyber Security Threats
3 Lessons | 3 Quizzes
How Internal Threats Occur
How Internal Threats Occur
How External Threats Occur
How External Threats Occur
The Impact of Threats
The Impact of Threats
System Vulnerabilities
 2 Lessons | 2 Quizzes
System Vulnerabilities 1
System Vulnerabilities 1
System Vulnerabilities 2
System Vulnerabilities 2
Legal Responsibilities
 2 Lessons | 2 Quizzes
Legal Responsibilities 1
Legal Responsibilities 1
Legal Responsibilities 2
Legal Responsibilities 2
Physical Security Methods
 1 Lesson | 1 Quiz
Physical Security Methods
Physical Security Methods
Hardware & Software Security Measures
 4 Lessons | 4 Quizzes
Antivirus & Firewalls
Antivirus & Firewalls
User Authentication
User Authentication
Encryption
Encryption
Further Security Measures
Further Security Measures
Network Types
 3 Lessons | 3 Quizzes
Types of Networks
Types of Networks
Network Topologies & Architecture
Network Topologies & Architecture
Modern Trends & Interpreting Schematics
Modern Trends & Interpreting Schematics
Network Components
 2 Lessons | 2 Quizzes
Hardware Components
Hardware Components
Storage & Software Components
Storage & Software Components
Network Infrastructure
 3 Lessons | 3 Quizzes
Network Transmission
Network Transmission
Network Structure
Network Structure
Network Services
Network Services
Assessment of Vulnerabilities
 1 Lesson | 1 Quiz
Assessing Vulnerabilities
Assessing Vulnerabilities
Assessment of Risk Severity
 2 Lessons | 2 Quizzes
Assessing Risk Severity
Assessing Risk Severity
Risk Assessment Approach
Risk Assessment Approach
Cyber Security Plan
 2 Lessons | 2 Quizzes
Cyber Security Plan 1
Cyber Security Plan 1
Cyber Security Plan 2
Cyber Security Plan 2
Internal Policies
 5 Lessons | 5 Quizzes
General IT Policies 1
General IT Policies 1
General IT Policies 2
General IT Policies 2
Incident Response Policy 1
Incident Response Policy 1
Incident Response Policy 2
Incident Response Policy 2
Disaster Recovery Policy
Disaster Recovery Policy
External Service Providers
 1 Lesson | 1 Quiz
External Service Providers
External Service Providers
Forensic Collection of Evidence
 2 Lessons | 2 Quizzes
Desktop Forensics
Desktop Forensics
Network Forensics
Network Forensics
Systematic Forensic Analysis
 2 Lessons | 2 Quizzes
Forensic Analysis Requirements
Forensic Analysis Requirements
Evaluating Findings
Evaluating Findings
Previous Quiz
Next Quiz

The Impact of Threats

Cyber Security and Incident Management Cyber Security Threats The Impact of Threats

No matter how much preparation goes into preventing and acting upon existing threats, it is likely that some kind of damage will still be caused.

We judge the impact level of the damage caused by these threats by the value of the loss caused. However, the loss isn’t always financial. Losses may be operational, financial, reputation or intellectual property loss.

This lesson we’ll learn about:

  1. The types of impact caused by threats
  2. How cyber security threats vary over time

Media Attachments: Presentation

1. The Types of Impact

The Types Of Impact

As we discussed in the introduction, we judge the impact level of the damage caused by these threats by the value of the loss caused, but this loss isn’t always financial. We’ll look at the different types of impact now.

Operational Loss

Operational losses refer to damages of the operating capability of an organisation. This includes a loss of manufacturing output, service availability and service data.

For example, a business whose operations rely on IT systems can be prevented from performing any work due to cybersecurity threats. Even on the manufacturing line, the machinery that builds the products will receive its instructions from computers that could be taken offline due to some threat.

For businesses who don’t rely on manufacturing, but providing services and data, they are even more easily affected. An online store could be taken down by a denial-of-service attack that will prevent the business from taking and processing sales.

It’s clear that, due to how reliant all businesses now are on IT systems, cybersecurity threats can massively hinder the operation of the business.

Financial Loss

Financial losses refer to damages to the wealth of an organisation. This includes organisational losses, compensation and legal fees.

By financial loss, we mean actual increased costs, or reduced income, caused by the threat. This could be replacing damaged equipment from sabotage or the loss of sales due to your website being down from a malicious hack.

Compensation and legal fees come as a result of suffering a threat, as a business may be culpable, and so might need to both compensate customers that are affected by the threat and pay data protection fines placed on the business by the ICO due to the improper security of the data. There may also be legal fees to defend oneself in court, should there be a case for legal culpability.

After being hacked, Tesco Bank had to pay £2.5m in compensation to customers and faced a massive fine by the ICO.

Reputation Loss

Reputation losses refer to the loss of trust and lowered opinion of people to a business as a result of them being affected by a threat. This could be a lack of service and employee or customer information.

The lack of service is due to customers no longer wanting to do business with an organisation due to concerns over whether the service will be available. If you subscribed to a website and their services regularly went down due to cybersecurity threats, this would naturally lead to questions about continuing to use it.

Similarly, if a business has been hacked and had personal data stolen of employees or customers, you may not want them to be storing your data in future, as you would be concerned of them failing to protect that data again, which could impact on you. You, therefore, may not provide them with data they require and may instead take your business elsewhere.

Intellectual Property Loss

Intellectual property losses refer to when product designs or trade secrets are stolen, thus adversely affecting the organisation.

This may be performed by a competitor organisation as corporate espionage, or an individual who wishes to blackmail the organisation or release it.

The theft of product designs, for example, could be used by a competitor to release a rival product. Stolen trade secrets will have almost the same effect, such as a competitor stealing the formula for a product so they can then produce it themselves.

This loss can have huge on-going effects to the business, leading to additional financial losses and a loss in reputation.

Further Thought

These four impacts have affected many businesses over the years. See if you can research some examples of these that have appeared in the news.

2. How Threats Vary Over Time

How Cyber Security Threats Vary Over Time

Cybersecurity threats vary over time as developers create new and smarter threats to counter existing infrastructure built to prevent internal and external threats. As a result of this, it may be hard to keep track of changes being made to the landscape.

Therefore some cybersecurity organisations provide regular updates on old, current and new data breaches and possible new malware that has been developed (if it is ever disclosed anywhere online).

For example, the National Cyber Security Centre produces weekly threat reports on the latest threats and vulnerabilities to computer users. Microsoft also completes its own reports, issued in different volumes for all kinds of security intelligence. Sophos labs runs a blog, newsletter & podcast on the latest threats.

There are also many blogs, news sites & technology sites that provide regular updates on the cybersecurity landscape. Some of these include:

A cybersecurity professional must therefore constantly keep themselves aware of these changing threats to be effective in their role. Being aware of the threats from last month, does not mean you are well prepared for the threats of this month.

Further Thought

Try and find an example online of a piece of malware that has come back several times after being altered by its developer to counter the changes made by anti-malware software.

Lesson Summary

  • Operational loss refers to damages to the operating capability of an organisation, examples including a reduction of manufacturing output, service availability and service data.
  • Financial loss refers to financial reparations that may need to be paid, examples including compensating customers/employees, legal fees and organisational costs.
  • Reputation loss refers to the loss of reputation of an organisation due to a lack of service or the leak of employee/customer information.
  • Intellectual property loss refers to where product designs are stolen, or trade secrets are revealed, allowing a rival organisation to get an upper hand in a free market.
  • Cybersecurity threats change all the time and it’s important to keep on top of these threats.
  • Organisations such as the National Cyber Security Centre produce reports that update on the current and changing threat landscape.

Quizzes
Previous Quiz
Back to Module
Next Quiz