CYB 411
University of Phoenix
06:36:02 GMT -05:00
, 1. Cloud-based Website Vulnerabilities:
a. SQL Injection:
Vulnerability Description:
o SQL injection allows attackers to execute arbitrary SQL queries in your
application's database, potentially extracting or modifying sensitive data.
Technical Risk:
o High: SQL injection can lead to data theft, data manipulation, and potentially
total system compromise.
Business Risk:
o High: Financial data exposure can lead to lawsuits, reputation damage, and
loss of customer trust.
Likelihood of Occurrence:
o Moderate: Commonly exploited vulnerability; likelihood increases without
proper mitigation measures.
Business Impact if Compromised:
o High: Financial records accessed or tampered with could result in legal
and financial consequences.
Recommended Mitigation Actions:
o Implement parameterized queries to prevent direct user input into SQL
statements.
06:36:02 GMT -05:00
University of Phoenix
06:36:02 GMT -05:00
, 1. Cloud-based Website Vulnerabilities:
a. SQL Injection:
Vulnerability Description:
o SQL injection allows attackers to execute arbitrary SQL queries in your
application's database, potentially extracting or modifying sensitive data.
Technical Risk:
o High: SQL injection can lead to data theft, data manipulation, and potentially
total system compromise.
Business Risk:
o High: Financial data exposure can lead to lawsuits, reputation damage, and
loss of customer trust.
Likelihood of Occurrence:
o Moderate: Commonly exploited vulnerability; likelihood increases without
proper mitigation measures.
Business Impact if Compromised:
o High: Financial records accessed or tampered with could result in legal
and financial consequences.
Recommended Mitigation Actions:
o Implement parameterized queries to prevent direct user input into SQL
statements.
06:36:02 GMT -05:00
