Individual Case Brief Rubric
The response to the attack was as to be expected based on the situation and lack of preparation. While there was little that could be done to stop the attack while it was happening. However, there were many things that could have been done to prepare for such an attack and possibly prevent it. iPremier lacked proper emergency processes. A new employee was the "first responder" and he had no training or manual to turn to for guidance because of this he spread panic through the company. It is easy to prioritize profit generating activities over expensive maintenance needs and this case is an example of how that kind of attitude can jeopardize the whole business.
iPremier was very lucky that the attack occurred at 4:31am.� Due to the time of the attack you could almost call the attack a gift.� They were able to learn about their own weaknesses without much interruption of service.� Whoever planned the attack didn't seem to want much attention since they picked the quietest time possible for the attack.�
The biggest issue they had was not having a plan on how to respond to the situation.� They have a book on what they should do but it had not been updated it in so long that the phone numbers were no longer accurate.� When Joanne arrived at Qdata they would not even allow her to enter the site to look into how the attack was occurring.� All of this was a strong indication of little to no thought put into how they would counter an attack or issue if one came up.� Due to never practicing an incident response all actions were chaotic.� People didn't know who to call or how they should respond.� Due to this everyone was spun up on the incident but no one knew what exactly should be done.�
There are many issues that iPremier company can modify/improve in order to create a safer environment for its data warehousing architecture from future hackings and also save important transactional data such as credit card information, various identification information etc.
First of all, Qdata should be brought up to the complete situation. They should be able to help iPremier about diagnosis of such kind of problems and escalate it to the Qdata's technical team once the diagnosis is complete. Qdata should also be asked to defend their client i.e. iPremier from any such future attacks by upgrading their applications and services.
Access to critical systems should be provided to key iPremier personnel in such emergencies as availability of applications is pointless without access to it. Qdata should improve their security service for the host by upgrading, expanding, or coming up with new ideas to make their services more robust, reliable, and attractive.� Since the attack on iPremier's architecture was a typical DoS attack (a relatively easier attack), the defense system to thwart any other occurrence in the near future shouldn't be difficult to...