Question

Every so often, a large company, a government organization, a news agency, or a financial institution falls victim to a security breach. This leaves valuable data compromised. For this assignment, do the following:

Identify 1 organization that has recently (within the last 3 years) had a security breach.

Share a summary of the incident. Identify and analyze how the organization reacted.

Discuss what was done to rectify and mitigate the situation.

Answer the following questions:

What were the implications of this security breach from both the user and company perspective?

Based on your analysis, what are some lessons learned from this incident?

In your opinion, would a similar incident be likely to happen again (to this organization) in the future?

Share any insights you may have had when communicating with the Network Specialists in the class.

Answer 1

So, in the year 2018, the data breach happened to elastic search was one of the biggest data breaches happened in that year. More than 82 millions customers were the victim of this breach.

So, mainly users and online businesses across the internet were affected and personal information such as names, emails, addresses, IP addresses, phone numbers and other details of the users were breached. The main issue occurred due to a database which was actually not secured and the attacker was able to drain out the data from the database.The organization implemented cyber security experts who tracked down the actual source of the breach and immediately they implemented security to that database.

At that particular time, the possible way the organization could get out of the situation is by implementing security to the database and that is what they did also.

For any organization who suffers data breach not only affected the users but also affects the organization in both terms of monetary as well as reputation. So, both the parties gets affected by the data breach.

Based on the incident, it is the responsibility of the organization to perform regular security audits so that they can able to figure out the loopholes present in the infrastructure and can contribute in solving those issues.

Yeah, similar incident can take place if there is any other loopholes present in the infrastructure. That will be the responsibility of the security team to figure out any loopholes present and instantly act upon that.