Description
Analyzing cubersecurity case in term of the cause, security failures, impact, and what could have been done differently to prevent or mitigate the attack.Then make presentation about the case study to present it to audiance.
Please follow the description and instrucation that available in the attached file and put the answer after each question.
Project
Deadline: Day 01/12/2024 @ 23:59
[Total Mark is 14]
Student Details:
CRN:
Name:
Name:
Name:
ID:
ID:
ID:
Instructions:
• You must submit two separate copies (one Word file and one PDF file) using the Assignment Template on
Blackboard via the allocated folder. These files must not be in compressed format.
• It is your responsibility to check and make sure that you have uploaded both the correct files.
• Zero mark will be given if you try to bypass the SafeAssign (e.g. misspell words, remove spaces between
words, hide characters, use different character sets, convert text into image or languages other than English
or any kind of manipulation).
• Email submission will not be accepted.
• You are advised to make your work clear and well-presented. This includes filling your information on the cover
page.
• You must use this template, failing which will result in zero mark.
• You MUST show all your work, and text must not be converted into an image, unless specified otherwise by
the question.
• Late submission will result in ZERO mark.
• The work should be your own, copying from students or other resources will result in ZERO mark.
• Use Times New Roman font for all your answers.
Restricted – مقيد
Description and Instructions
Pg. 01
Description and Instructions
Project Description:
This project is an opportunity for you to practice your knowledge and skills. Here are
several cybersecurity cases each case highlights a different aspect of cybersecurity.
You should choose one case as a group and analyze the case in terms of the cause,
security failures, impact, and what could have been done differently to prevent or
mitigate the attack.
After that, each group should Make a presentation. Presentations begin in the ninth
week.
Total Marks = 14
Presentation
Project File
5 marks
5 marks
Answer your colleagues’
questions.
4 marks
•
Group Size = maximum 3 members.
•
The chosen case should be divided between members of the group.
•
Each member must present his part.
•
Marks will be awarded based on your explanation, the quality of the content, your
discussion skills, and the correctness of your answers.
•
The students must answer the questions in this activity individually to get discussion
marks
•
One group member (group leader) should submit Project File and Presentation
Slides on Blackboard.
Presentation Marking Criteria:
Restricted – مقيد
Pg. 02
Description and Instructions
Complete content (Introduction, body, and conclusion)
3 marks
Effective use of time (max. 8-10 minutes)
1 mark
Voice projection and loudness/ Eye contact/ Confidence and 1 mark
attitude
Restricted – مقيد
Description and Instructions
Pg. 03
Capital One Data Breach (2019)
Learning
Outcome(s):
CLO1: Explain
networking and
security, security
issues, trends,
and security
Case Summary:
In 2019, a former Amazon Web Services (AWS) employee exploited a misconfigured
firewall in Capital One’s cloud infrastructure, leading to a data breach that exposed
sensitive information of over 100 million customers. The breach involved personal data
such as names, addresses, credit scores, and bank account information.
Key Questions for Analysis:
CLO2: Apply
effective, proper,
1. How did a misconfigured cloud infrastructure contribute to this breach, and
and state-of-the-
what could Capital One have done to secure its cloud environment?
art security tools
2. What role does cloud security and shared responsibility between cloud
and technologies.
providers and customers play in preventing breaches?
3. Analyze the importance of securing sensitive data in cloud environments with
CLO6:
Demonstrate
processes to
implement and
enforce policy
proper encryption and access controls.
4. How should organizations secure hybrid cloud environments, especially when
handling sensitive financial information?
5. Critique Capital One’s incident response and the role of cloud security audits in
preventing future breaches.
Restricted – مقيد
Purchase answer to see full
attachment