000 | 06593nam a2200541 i 4500 | ||
---|---|---|---|
001 | 8544154 | ||
003 | IEEE | ||
005 | 20220712204922.0 | ||
006 | m o d | ||
007 | cr |n||||||||| | ||
008 | 190319s2018 mau ob 001 eng d | ||
020 |
_a9780262349536 _qelectronic bk. |
||
020 |
_z0262349531 _qelectronic bk. |
||
020 |
_z9780262038850 _qprint |
||
035 | _a(CaBNVSL)mat08544154 | ||
035 | _a(IDAMS)0b00006488883409 | ||
040 |
_aCaBNVSL _beng _erda _cCaBNVSL _dCaBNVSL |
||
050 | 4 |
_aHV6773 _b.W655 2018eb |
|
082 | 0 | 4 |
_a364.16/8 _223 |
100 | 1 |
_aWolff, Josephine, _eauthor. _925377 |
|
245 | 1 | 0 |
_aYou'll see this message when it is too late : _bthe legal and economic aftermath of cybersecurity breaches / _cJosephine Wolff. |
264 | 1 |
_aCambridge : _bMIT Press, _c2018. |
|
264 | 2 |
_a[Piscataqay, New Jersey] : _bIEEE Xplore, _c[2018] |
|
300 | _a1 PDF (336 pages). | ||
336 |
_atext _2rdacontent |
||
337 |
_aelectronic _2isbdmedia |
||
338 |
_aonline resource _2rdacarrier |
||
490 | 1 | _aInformation policy series | |
505 | 8 | _aThe Search for Security StandardsTax Fraud; 4 -- The Most Wanted Cybercriminal in the World: GameOver ZeuS, Cryptolocker, and the Rise of Ransomware; GameOver ZeuS; Operation Tovar; The Rise of Ransomware; Learning from ZeuS; II -- Lessons from Cyberespionage; 5 -- Certificates Gone Rogue: The DigiNotar Compromise and the Internet's Fragile Trust Infrastructure; Through the Firewalls and Past the Sluice Doors; How the Rogue Certificates Were Used-and Stopped; To Catch a Rogue Certificate; Tensions over Trustworthiness: Browsers versus CAs | |
505 | 8 | _a6 -- No Doubt to Hack You, Writed by UglyGorilla: China's PLA Unit 61398 and Economic EspionageThe PLA Intrusion Process; Intermediaries and Opportunities for Intervention; 7. "Decades in the Making": The Office of Personnel Management Breach and Political Espionage; Deep Panda and the Attack of the Avengers; "The Whole of Government Is Responsible"; Remediation of Political Espionage; III -- Lessons from Online Acts of Public Humiliation; 8 -- Operation Stophaus: The Spamhaus Denial-of-Service Attacks; "Finally Pay Back"; Reflection Attack; Playing Defense; "Custard's Last Stand" | |
505 | 8 | _a9. "An Epic Nightmare": The Sony Breach and Ex-Post MitigationThe Guardians of Peace; A Very Public Accusation; "A Strong and Merciless Countermeasure"; "No Choice but to Hold You Responsible"; 10 -- An Imperfect Affair: Ashley Madison and the Economics of Embarrassment; "Kind of Untouchable"; "Password Protection-Even to the Nth Degree"; The Engager Profiles; Damages; IV -- Who Should Safeguard Our Data? Distributing Responsibility and Liability; 11. "Email the Way It Should Be": The Role of Application Designers and Software Developers; Application Design as Defense | |
505 | 8 | _aIncreasing Work and Sending SignalsApplication-Layer Security for Email and Web Browsers; Monitoring Anomalous User Behavior; 12 -- Reasonable Security: The Role of Organizations in Protecting Their Data and Networks; Tailoring Application Capabilities; Multi-factor Authentication and Encryption; Network Segmentation and Data Exfiltration; Limitations of Individual Organizations; 13. "Happy Talk About Good Ideas": The Role of Policymakers in Defending Computer Systems; Policies Aimed at Attackers; Defender-Oriented Policy Levers; Security Reporting Policies; Cyber Insurance | |
505 | 0 | _aIntro; Contents; Series Editor's Introduction; Acknowledgments; 1 -- Introduction: After the Breach; I -- Lessons from Financially Motivated Cybercrimes; 2 -- Operation Get Rich or Die Tryin': How the TJX Breach Set the Stage for a Decade of Payment Card Conflict; Technical Stages of the TJX Compromise; From Bits to Barrels of Cash; Who to Blame?; Liability Shift; 3. "What They Aren't Telling You Is Their Rules Are Archaic": The South Carolina Department of Revenue Breach, IRS Fraud, and Identity Theft; Thirty-Two Days to Extract Seventy-Five GBs; What Really Matters Is the Blame | |
506 | _aRestricted to subscribers or individual electronic text purchasers. | ||
520 | _aWhat we can learn from the aftermath of cybersecurity breaches and how we can do a better job protecting online data. Cybersecurity incidents make the news with startling regularity. Each breach--the theft of 145.5 million Americans' information from Equifax, for example, or the Russian government's theft of National Security Agency documents, or the Sony Pictures data dump--makes headlines, inspires panic, instigates lawsuits, and is then forgotten. The cycle of alarm and amnesia continues with the next attack, and the one after that. In this book, cybersecurity expert Josephine Wolff argues that we shouldn't forget about these incidents, we should investigate their trajectory, from technology flaws to reparations for harm done to their impact on future security measures. We can learn valuable lessons in the aftermath of cybersecurity breaches. Wolff describes a series of significant cybersecurity incidents between 2005 and 2015, mapping the entire life cycle of each breach in order to identify opportunities for defensive intervention. She outlines three types of motives underlying these attacks--financial gain, espionage, and public humiliation of the victims--that have remained consistent through a decade of cyberattacks, offers examples of each, and analyzes the emergence of different attack patterns. The enormous TJX breach in 2006, for instance, set the pattern for a series of payment card fraud incidents that led to identity fraud and extortion; the Chinese army conducted cyberespionage campaigns directed at U.S.-based companies from 2006 to 2014, sparking debate about the distinction between economic and political espionage; and the 2014 breach of the Ashley Madison website was aimed at reputations rather than bank accounts. | ||
530 | _aAlso available in print. | ||
538 | _aMode of access: World Wide Web | ||
588 | 0 | _aPrint version record. | |
650 | 0 |
_aComputer crimes _xPrevention. _97872 |
|
650 | 7 |
_aComputer crimes _xPrevention. _2fast _97872 |
|
655 | 4 |
_aElectronic books. _93294 |
|
710 | 2 |
_aIEEE Xplore (Online Service), _edistributor. _925378 |
|
710 | 2 |
_aMIT Press, _epublisher. _925379 |
|
776 | 0 | 8 |
_iPrint version: _aWolff, Josephine, author. _tYou'll see this message when it is too late _z9780262038850 _w(DLC) 2018010219 _w(OCoLC)1029793778 |
830 | 0 |
_aInformation policy series. _921521 |
|
856 | 4 | 2 |
_3Abstract with links to resource _uhttps://ieeexplore.ieee.org/xpl/bkabstractplus.jsp?bkn=8544154 |
942 | _cEBK | ||
999 |
_c73549 _d73549 |