You'll see this message when it is too late, the legal and economic aftermath of cybersecurity breaches, Josephine Wolff
Type
Label
You'll see this message when it is too late, the legal and economic aftermath of cybersecurity breaches, Josephine Wolff
Language
eng
Bibliography note
Includes bibliographical references and index
Index
index present
Literary Form
non fiction
Main title
You'll see this message when it is too late
Nature of contents
bibliography
Oclc number
1029793778
Responsibility statement
Josephine Wolff
Series statement
Information policy series
Sub title
the legal and economic aftermath of cybersecurity breaches
Summary
Cybersecurity incidents make the news with startling regularity. Each breach-the theft of 145.5 million Americans' information from Equifax, for example, or the Russian government's theft of National Security Agency documents, or the Sony Pictures data dump-makes headlines, inspires panic, instigates lawsuits, and is then forgotten. The cycle of alarm and amnesia continues with the next attack, and the one after that. In this book, cybersecurity expert Josephine Wolff argues that we shouldn't forget about these incidents, we should investigate their trajectory, from technology flaws to reparations for harm done to their impact on future security measures. We can learn valuable lessons in the aftermath of cybersecurity breaches. Wolff describes a series of significant cybersecurity incidents between 2005 and 2015, mapping the entire life cycle of each breach in order to identify opportunities for defensive intervention. She outlines three types of motives underlying these attacks-financial gain, espionage, and public humiliation of the victims-that have remained consistent through a decade of cyberattacks, offers examples of each, and analyzes the emergence of different attack patterns. The enormous TJX breach in 2006, for instance, set the pattern for a series of payment card fraud incidents that led to identity fraud and extortion; the Chinese army conducted cyberespionage campaigns directed at U.S.-based companies from 2006 to 2014, sparking debate about the distinction between economic and political espionage; and the 2014 breach of the Ashley Madison website was aimed at reputations rather than bank accounts
Table Of Contents
Introduction -- Lessons from financially motivated cybercrimes -- Operation get rich or die trying : how the TJX breach set the stage for a decade of payment card conflict -- "What they aren't telling you is their rules are archaic" : the South Carolina Department of Revenue breach, IRS fraud & identity theft -- The most wanted cybercriminal in the world : gameover zeus, cryptolocker, and the rise of ransomware -- Lessons from cyber espionage -- Certificates gone rogue : the diginotar compromise and the fragile trust infrastructure of the online world -- No doubt to hack you, writed by uglygorilla : China's PLA unit 61398 and economic espionage -- "Decades in the making" : the office of personnel management breach and political espionage -- Lessons from online acts of vengeance -- Operation Stophaus : the Spamhaus denial-of-service attacks -- "An epic nightmare" : the Sony breach and ex-post mitigation -- Imperfect affair : Ashley Madison and the economics of embarrassment -- Who should safeguard our data? : shared responsibility and liability -- "Email the way it should be" : the role of application designers and software developers -- Reasonable security : the role of organizations in protecting their data and networks -- "Happy talk about good ideas" : the role of policy makers in defending computer systems -- Conclusion: it will take all of us -- Notes -- Bibliography -- Index
Classification
Creator
Subject
Content
Author
Is Part Of
Mapped to
Incoming Resources
- Has instance1
Outgoing Resources
- Classification1
- Creator1
- Subject1
- Content1
- Author1
- Is Part Of1
- Mapped to1