How should stanley and the mwru incident response

Assignment Help Case Study
Reference no: EM13333228

Peter G. Parker was a mild-mannered information security consultant by day. This dull, socially maladroit, balding cyber nerd offered security consulting to financial firms. By night, Parker transformed into a cyber-crime fighting vigilante known as Spider-Hack. Spider-Hack lived an action-packed life foiling the plans of high-tech crime lords and presenting at information security conferences, all the while thrilling legions of babes.

His dual life began a year ago when Parker was troubleshooting problems with the Ethernet card in his PC. Ignoring the manufacturer's warnings, Parker didn't disconnect the power from his system while he was fiddling with the network interface. While Parker yanked hard on the card, he cut his finger on its sharp, exposed edge. Instantly, this small, open wound came into direct contact with the copper prongs of the card, injecting HTTP messages at gigabit speeds right into Parker's nervous system. After a rough night's sleep, these web messages had changed Parker into Spider-Hack, a bona fide information security super-hero.

One night, whilst swinging from building to building through the city, Spider-Hack heard the cries of a frustrated incident handler at a major military supplier. The cries came from Stanley, who led the incident handling team at Military Widgets R Us (MWRU), a large e-commerce military contractor. Whenever military generals needed quick delivery of advanced weaponry, they could surf to the MWRU website and instantly order heavy armaments with a simple point and click. Stanley was frustrated because an attacker was launching a Distributed Denial of Service (DDoS) attack against the MWRU web site. Every second, ten million bogus packets were crowding out legitimate clientele. If customers couldn't reach the MWRU website quickly, they'd surf to the competition, Osborn Industries, to buy their military wares. The DDoS attack was costing MWRU millions of dollars a minute in lost business to their competition!

"I'm here to help," said Spider-Hack, in his best super hero voice. Stanley explained that whenever MWRU went head-to-head with Osborn, mysterious events would always tilt things in favor of Osborn. When MWRU had plans for a new military assault glider, Osborn beat them to market by several weeks. Similar events occurred with the pricing plans for their new "I Can't Believe It's Not Nuclear" bomb product. Now, only days after launching their e-commerce site, MWRU faced this packet flood that would drive traffic to Osborn's web site. As an incident handler, Stanley was also concerned because it appeared an attacker had broken into his network. An intruder named the Green Phreakin' Goblin had left messages on internal MWRU systems taunting Stanley about his inability to find the attacker. Stanley was worried that this mysterious interloper may have something to do with all the trouble MWRU faced.

Questions:
•1) What advice should Spidey give Stanley for quickly stopping the DDoS flood?

•2) What process should Stanley employ to determine where the flood originated?

•3) In the longer term, how should Stanley and the MWRU incident response team prepare in advance to handle any further massive DDoS attacks?

•4) Given that an intruder was on the internal network, what advice should Spider-Hack give MWRU for protecting sensitive e-mail and files on their network, and which tools can be used for such protection?

Reference no: EM13333228

Questions Cloud

Explain the reaction of calcium bicarbonate : The reaction of calcium bicarbonate, Ca(HCO3)2 with hydrochloric acid, HCl, produces a solution of CaCl2, gaseous carbon dioxide, CO2, and water, H2O.
Business law discussion : Business Law Discussion
Describe what the web service will provide : Using Microsoft PowerPoint, create a proposal to add a Web Service to the web application that you created earlier in this course. Your presentation should at least cover.
Explain why is it that benzylic and allylic carbons : Why is it that benzylic and allylic carbons undergo Sn1/E1 reactions even if they are primary carbons
How should stanley and the mwru incident response : Given that an intruder was on the internal network, what advice should Spider-Hack give MWRU for protecting sensitive e-mail and files on their network, and which tools can be used for such protection?
Business information system : Business Information System
What is the stock price to grow at 16 percent per year : Chartreuse County Choppers, Inc. is experiencing rapid growth. The company expects dividends to grow at 16 percent per year for the next 10 years before leveling off at 6 percent into perpetuity.
Explain volume will it occupy if the pressure is increased : A sample of nitrogen gas at 298 K and 0.980 atm has a volume of 37.42 L. What volume will it occupy if the pressure is increased to 1.176 atm at constant temperature
Determine what will a share of stock sell for today : The company will increase its dividend by 20 percent next year and will then reduce its dividend growth rate by 5 percentage points per year until it reaches the industry average of 5 percent dividend growth

Reviews

Write a Review

 

Case Study Questions & Answers

  How careers in information systems have been affected

Describe the role of information systems in careers in accounting/finance, human resources, marketing and operations management, and explain how careers in information systems have been affected by new technologies and outsourcing.

  Utilizing information security assurance capability model

Request assistance with writing a 7-8 page applied case study, utilizing the Information Security Assurance Capability Maturity Model (ISA-CMM Version 3.2.

  What are the common manifestations of alcoholic cirrhosis

What are the common manifestations of alcoholic cirrhosis? Which of these are secondary to hepatocellular failure? Which are secondary to portal hypertension?

  Write a report which contains a listing of your program

A tubular post of square cross section, designed to support a uniformly distributed load on a horizontal platform, is shown in Figure A. The principal stresses and maximum shear stresses at points A and B at the base of the post have to be determi..

  Develop a long-term procedural and policy solution

The research end of the business is the well-spring from which they draw their competitive edge, but Omega is realizing that consolidating the research workforce adds synergy to their efforts, and reduces unnecessary overhead.

  Discuss critically infosys current and future strategy

Discuss critically Infosys current and future strategy. What advice would you give Kris Gopalakrishnan and KShop has resulted in information overload among staff. What operational measures would you suggest to overcome such challenges?

  Architectural layers for our bug tracking system case study

Show your selection of hardware and software for each model in the deployment diagrams.

  Evaluate the information received in the survey

Evaluate the information received in the survey (Please assume a questionnaire survey was conducted from university students about the issue), identify alternative courses of action and make recommendations in a formal report.

  Create value through restructuring

The Hanes spinoff realized profit for those who were able to get shares while being shareholders in Sara Lee. But were the gains enough to offset your holding and decrease in dividends from Sara Lee stock?

  How does nsi provide service desk support

Our clients, mainly teachers, are on deck for many hours a day, way beyond the capacity to staff a help desk phone line for 14 hours a day. CIS3008 - Information technology service management.

  Use of the term data science is increasingly common

use of the term "data science" is increasingly common, as is "big data." But what does it mean? Is there something unique about it? What skills do "data scientists" need to be productive in a world deluged by data? What are the implications for sc..

  Case study on erp project implementation

Vito was now interested in finding out what the new critical path will be. Furthermore, Vito wanted to start work on the project by July 01, 2013 and wanted to know when the project would be completed.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd