Threat 1 - The operating system and programs on the workstations are unpatched. Again, the company computers are unpatched and missing updates. These vulnerabilities are how criminal compromise systems.
Likelihood of threat 1 - The likelihood of an unpatched workstation being compromised on the Internet it high. As has been mentioned in the server section, unpatched computers are attacked quickly and infected in a matter of minutes when attached to the Internet.
Security controls for threat 1 - C3J recommends turning on automatic updates and/or regularly downloading software patches to mitigate the risk of this threat.
Threat 2 - Workstations have no antivirus protection to protect them from malware infection. Once again, installing antivirus …show more content…
It is best common practice to create non-administrator accounts for everyday usage to reduce the risk from unauthorized applications installing. Essentially, standard user accounts mitigate the chance of malware running with administrator permissions.
Likelihood of threat 4 - The likelihood of the risk is high since end users already download and install software from the Internet. As a result, AMI is battling pop-up ads and sluggish workstations.
Security controls for threat 4 - C3J recommends AMI establishing a policy to create standard user accounts on each workstation for end users, and a separate administrator account for maintenance and administration.
Threat 5 - Most operating systems have a firewall to block unwanted network traffic and software being installed on the computer...The workstations need a software firewall configured to protect the workstations from unauthorized users and programs. A firewall will monitor inbound and outbound communications, and it should block any communications that were not initiated by the workstation.
Likelihood of threat 5 - The likelihood of the threats from a firewall not being installed are high since the workstations are already infected with
Likelihood of threat 1 - The likelihood of an unpatched workstation being compromised on the Internet it high. As has been mentioned in the server section, unpatched computers are attacked quickly and infected in a matter of minutes when attached to the Internet.
Security controls for threat 1 - C3J recommends turning on automatic updates and/or regularly downloading software patches to mitigate the risk of this threat.
Threat 2 - Workstations have no antivirus protection to protect them from malware infection. Once again, installing antivirus …show more content…
It is best common practice to create non-administrator accounts for everyday usage to reduce the risk from unauthorized applications installing. Essentially, standard user accounts mitigate the chance of malware running with administrator permissions.
Likelihood of threat 4 - The likelihood of the risk is high since end users already download and install software from the Internet. As a result, AMI is battling pop-up ads and sluggish workstations.
Security controls for threat 4 - C3J recommends AMI establishing a policy to create standard user accounts on each workstation for end users, and a separate administrator account for maintenance and administration.
Threat 5 - Most operating systems have a firewall to block unwanted network traffic and software being installed on the computer...The workstations need a software firewall configured to protect the workstations from unauthorized users and programs. A firewall will monitor inbound and outbound communications, and it should block any communications that were not initiated by the workstation.
Likelihood of threat 5 - The likelihood of the threats from a firewall not being installed are high since the workstations are already infected with