From the research, it is estimate that the cost of the
incident is about USD 318 per customer. And due to the incident, almost 9% of
customer have left Sony and change to other game services provider such as
Xbox. However, no particular news showing that there been any reports of
fraudulent use of identities obtained from the hack but Sony had been hack
again in year 2012 October.
Q2: Gaming and virtual services on the Internet, like
Sony’s PSN, World of Warcraft, and Second Life, boast millions of users. For
each user, this service must store credit card information. What must these
organizations do to protect the private information of their customers? Is it
even reasonable to assume that any organization can have protection measures in
place to stop the world’s best hackers?
The organization could:
1.
Encrypt the private information.
2.
Put stronger firewall or maybe layering the
firewall.
3.
Hired a team of member which knows how to deal
with situation when being hack by hackers.
It is important to have such protection as the private
information somehow is very private and must be protect from theft. A lot of
fraud can occur if the customer identity had been stolen.
Q3: If an extremely intelligent hacker is caught by a law
enforcement agency, should that hacker be prosecuted and sent to jail? Is there
perhaps way that the hacker might be “turned’ for the good of the digital
world? What would that be?
It is depends on what kind of fraud had been done by the
hacker. If the hacker had stole the identity and create a big problem to the
society, he/she shall be sentence and send to jail. However, if the hacker is
only hack for fun and did not make big harm to others, he can be advice to
become the talent of protecting cyber world from being hacking. Only those know
hacking system well person can know how to stop them. In fact, a lot of
antivirus system or firewalls are created by intelligent hackers.
Q4: Every survey taken of business regarding data
breaches has found that many businesses are reluctant to publicly announce a
data breach. Further, most business will downplay the significance of the
breach. Why do organizations behave like this? What is there to gain by not
operating in a transparent fashion? Is this an ethical issue, a legal issue or
both?
Company reluctant to publicly announce a data breach is due
to they want to protect their company good will. And there are very limited law
that enforces company to announce to public is such incident happen. It is all
depend on the ethical issue whether the company wanted to protect their client
or the company names.
Q5: What’s your personal identity theft story? Has
someone used your credit card fraudulently? How many phishing emails have you
received in the last year? How often do you check your credit card report?
I am been lucky where I do not have any identity theft
story. I have receiving phishing email almost every week but I choose to junk
them. I have been checking my credit card report every week.
No comments:
Post a Comment