Kudler Fine Foods IT Security Report and Presentation †Top Threats

Kudler Fine Foods IT Security Report and Presentation Top Threats police squad B has been commissioned to look the Kudler Fine Foods (KFF), frequent shopper, guest solelyegiance Program that is currently in development. The team has also been asked to direct the governing body of rules development team to ensure the system is established securely so that it properly protects company data and customer training throughout all stages of the system development process. In week 2, the team allow examine the guest truth Program for vulnerabilities in different areas of the system. The study will define the achievable threats that exist to the security of the organizations and the customers data and information, the potential vulnerabilities each threat may exploit, and area of the system touched by the threats. Additionally, a summary of the most critical threats to Kudlers guest Loyalty Program will be provided. The following table presents the possible threats, the potentia l vulnerabilities each threat may exploit, and area of the system do by the threats Area of SystemsThreat Potential Vulnerability interlocks Unauthorized entry unlocked equipment roomConfidentiality breach E-mail that doesnt employ scanning of messagesself-abnegation of Service Lack of interior firewall can lead to worm spreadNatural Disaster Potential issues from lack of redundancySniffing Network infiltration via wireless access point Workstations Unauthorized access Patches non currentSniffing Old software versionsNatural Disaster Firewall non active Servers Unauthorized access Patches not currentSniffing Old software versionsNatural Disaster Firewall not active Employees companionable applied science Training not currentCorruption UnhappyMalicious behavior poor work moral principle Data Corruption Non securedDeletion Unencrypted data Software Corruption Non-securedDeletion Software that does not employee authorized user access Building Tailgating Front door that doesnt move over employee security guardUnauthorized access Compromised key card accessOf the possible threats to Kudler Fine Foods Customer Loyalty Program there are two critical threats find during our assessment that warrents Kudlers immediate attention. The first of these threats is Social engineering. Social Engineering according to Social-Engineer.org (2013), is the act of influencing a person to accomplish goals that may or may not be in the targets trounce interest. This may include obtaining information, gaining access, or getting the target to take real action. The employees themselves are the area of the system affected by this threat. Social Engineering exploits their naivety. General lack of experience in recognizing this causa of attack is a major reason for its success. Education on what Social Engineering is and how to get laid attacks coupled with company policies written, put into place, and enforced to pr make upt individuals from divulging or even having access t o certain information no matter the scenario is the recommended course of action.Next is Denial of Service. According to Conklin, White, Williams, Davis, and Cothren (2012), a Denial of Service ( country) attack is an attack think to disrupt a system or service from operating normally. The assailant will attempt, through means of crashing the system, closing out a logged on session, or overwhelming a machine with multiple requests that causes the machine to freezing up or asstated crash. Kudlers Customer Loyalty Program information could be affected because the program that accesses customer information could be made unavailable by such a DoS attack.This could cause events such as slow terminal responses, systems going offline charm updating customer files, and causing system reboots to return to normal operation. This type of attack exploits the weakness of either not having a firewall running in the terminal or server background or a poorly set up firewall allowing too many n etwork requests to be handled by the system. Kudlers IT department should be aware of this and conduct a system check to ensure that the firewall allows requests from only internal or authorized out-of-door sources.As requested by Kudler Fine Foods, Team B has conducted an examination of the Customer Loyalty Program concerning the possible threats and vulnerabilities to their system. A table presenting these threats and vulnerabilities as good as the areas of the system affected has been made available for review. In addition, a summary of the top two critical threats that must be address by Kudler Fine Foods has been provided.