Five Network Security Breaches Network breaches are an ever-present and growing threat to network security. There are many ways that such breaches can occur, and the following material will analyze five case studies. The issues to be addressed will include, what went wrong, how could it have been prevented, and what measures could be instituted to prevent a reoccurrence.
Naoki Hiroshima’s Twitter Handle Naoki Hiroshima was the owner of a rare Twitter handle of just one letter, @N. The handle is rare enough that he had been offered as much as fifty thousand dollars for it (Naoki Hiroshima, 2014). His account was often the target of theft via password reset attempts, so he thought nothing of it when on January 20th 2014, he got a text
…show more content…
The first two digits were successfully guessed in one phone call, and the domain was stolen. This case illustrates the dangers of nontechnical hacking, such as social engineering. According to Chuck Easttom (2012), “social engineering is a technique for breaching a system’s security by exploiting human nature rather than technology” (p.6). This attack could have been prevented by either of the two companies involved if they had an education program in place for their employees on how to recognize and prevent social engineering exploitation. The theft of Naoki’s account could also have been prevented if PayPal or GoDaddy had better security policies in place. For instance, an assistant at PayPal should under no circumstances give out customer account numbers over the phone. And GoDaddy should not allow people to repeatedly guess authentication information. This case is only ten days old as of the time of this writing, and it is still being investigated, but according to Matthew Panzarino of TechCrunch.com (2014), “The company admits that one of its employees was ‘socially engineered’ into giving out additional information which allowed a hacker to gain access to Naoki Hiroshima’s GoDaddy account.”
Target’s Massive Loss of Customer Data Between November 27th and December 15th of 2013, the retail chain Target had 110 million customer accounts stolen in the form of 40 million credit/debit cards and 70 million accounts of personally identifiable information (WatchGuard