P1—Explain the impact of different types of threat to
an organisation
Brief
In this report, I will be identifying and discussing the various
threats to BHS. As explained in the assignment scenario,
BHS is now relaunching as an online business, so are prone
to more threats that they’d have to be aware of.
Malicious Damage
By expanding to an online business, BHS has introduced
more potential risks to their system. One of the ways these
threats can occur is internally through phishing mail. In most
cases, these are emails sent by hackers the pose as official
companies such as Barclays, Netflix, NatWest etc. They’d
claim that there was an issue regarding the recipient's
details with the company, and convince them to resend
sensitive information that is shared with these companies.
BHS employees could be affected by this, as a hoax email
claiming to be from the company itself may ask workers to
send sensitive information regarding important issues e.g. a
paycheck error. One of the ways BHS could overcome this
issue is by sending their own “phishing emails” to
understand which employees are most likely to be tricked
into sending important information regarding themselves
and possibly the company, and train those that were
manipulated, so that they are less likely to jeopardise their
careers as well as the business. Another risk that BHS can
come across is unknowingly installing another spyware onto
the system. Many companies use spyware to ensure that the
employees focus on the task, and also to protect company
secrets from being leaked.
an organisation
Brief
In this report, I will be identifying and discussing the various
threats to BHS. As explained in the assignment scenario,
BHS is now relaunching as an online business, so are prone
to more threats that they’d have to be aware of.
Malicious Damage
By expanding to an online business, BHS has introduced
more potential risks to their system. One of the ways these
threats can occur is internally through phishing mail. In most
cases, these are emails sent by hackers the pose as official
companies such as Barclays, Netflix, NatWest etc. They’d
claim that there was an issue regarding the recipient's
details with the company, and convince them to resend
sensitive information that is shared with these companies.
BHS employees could be affected by this, as a hoax email
claiming to be from the company itself may ask workers to
send sensitive information regarding important issues e.g. a
paycheck error. One of the ways BHS could overcome this
issue is by sending their own “phishing emails” to
understand which employees are most likely to be tricked
into sending important information regarding themselves
and possibly the company, and train those that were
manipulated, so that they are less likely to jeopardise their
careers as well as the business. Another risk that BHS can
come across is unknowingly installing another spyware onto
the system. Many companies use spyware to ensure that the
employees focus on the task, and also to protect company
secrets from being leaked.
