Nature of incident An employee spoofed IP addresses and eavesdropped on the company’s network. Through the eavesdropping the employee was able to gather information on where specific data files were stored and was able to change their pay to reflect a pay raise and received the higher pay for two months. This was discovered by the auditor who went ahead to notify several individuals in the organization about the fluctuation and disparity with the paychecks. However this was intercepted by the employee who went ahead to craft fake emails in response to the issues raised by the auditor. This led to an email exchange between the employee and the auditor which allowed the employee to gain access to other financial records. With the newly acquired access the employee lowered the salaries of a few prominent employees including the president of the company and added the deductions to his salary. as normal as can be expected. If no abnormalities are flagged then the system can be said to have been fully restored (Kral 2011). However it is advised that the company should select a tool to help in the testing and monitoring of the restoration for this cannot be manually carried out (Kral 2011). References Wallace M. & Webber L. (2011). The disaster recovery handbook: A step-by-step plan to ensure business continuity and protect vital operations facilities and assets. New York: AMACOM. Schweitzer D. (2003). Incident response: Computer forensics toolkit. Indianapolis Ind: Wiley Pub. Paquet C. (2013). Network Security Concepts and Policies. Cisco available at: http://www.ciscopress.com/articles/article.asp?p=1998559Ballad B. Ballad T. & Banks E. K. (2011). Access control authentication and public key infrastructure. Sudbury MA: Jones & Bartlett Learning. Kral P. (2011). The Incident Handlers Handbook. SANS Institute Hassell J. (2006). The top five ways to prevent IP spoofing. Available at: www.computerworld.com/article/2546050/network-security/the-top-five-ways-to-prevent-ip-spoofing.html [...]
This project is 90 percent complete. Total of two project name as Task 2 and Task 3. I have attached written project and revision comment mean where it needs revision and some helpful tips.