从破坏到勒索软件:来自黑客的教训

Q2 Social Sciences Journal of Information Technology Teaching Cases Pub Date : 2022-06-23 DOI:10.1177/20438869221110246

P. Datta, T. Acton

{"title":"从破坏到勒索软件:来自黑客的教训","authors":"P. Datta, T. Acton","doi":"10.1177/20438869221110246","DOIUrl":null,"url":null,"abstract":"Since 2020, SARS-COV-2 (COVID-19) has forced organizations to pivot towards digital transformation. Yet, the same period has seen a dramatic rise in hacking and ransomware attacks, especially from internationally malicious actors attempting to simultaneously disrupt and profit. Although a knee-jerk reaction has been the adoption of new-fangled technologies as the only way to prevent, detect, and mitigate attacks, this case study highlights how imperative it is for organizations to proactively review and re-engineer their process inefficiencies and human errors as a systematic counter-strategy. Using fictitious characters reflecting real-world hacking processes and outfits, this case projects the need for a new cybersecurity order, where cybersecure process reengineering and human training deserve greater attention than simply investing in newer cybersecurity technologies.","PeriodicalId":37921,"journal":{"name":"Journal of Information Technology Teaching Cases","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2022-06-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":"{\"title\":\"From disruption to ransomware: Lessons From hackers\",\"authors\":\"P. Datta, T. Acton\",\"doi\":\"10.1177/20438869221110246\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Since 2020, SARS-COV-2 (COVID-19) has forced organizations to pivot towards digital transformation. Yet, the same period has seen a dramatic rise in hacking and ransomware attacks, especially from internationally malicious actors attempting to simultaneously disrupt and profit. Although a knee-jerk reaction has been the adoption of new-fangled technologies as the only way to prevent, detect, and mitigate attacks, this case study highlights how imperative it is for organizations to proactively review and re-engineer their process inefficiencies and human errors as a systematic counter-strategy. Using fictitious characters reflecting real-world hacking processes and outfits, this case projects the need for a new cybersecurity order, where cybersecure process reengineering and human training deserve greater attention than simply investing in newer cybersecurity technologies.\",\"PeriodicalId\":37921,\"journal\":{\"name\":\"Journal of Information Technology Teaching Cases\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-06-23\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Journal of Information Technology Teaching Cases\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1177/20438869221110246\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q2\",\"JCRName\":\"Social Sciences\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Information Technology Teaching Cases","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1177/20438869221110246","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"Social Sciences","Score":null,"Total":0}

引用次数: 6

摘要

自2020年以来，新冠肺炎(COVID-19)迫使组织转向数字化转型。然而，在同一时期，黑客和勒索软件攻击急剧增加，尤其是来自国际恶意行为者的攻击，他们试图同时破坏和获利。尽管下意识的反应是采用新奇的技术作为预防、检测和减轻攻击的唯一方法，但本案例研究强调了组织主动审查和重新设计其流程效率低下和人为错误作为系统反策略的必要性。这个案例使用虚构的角色来反映现实世界的黑客流程和装备，表明需要一种新的网络安全秩序，在这种秩序中，网络安全流程再造和人员培训值得更多的关注，而不仅仅是投资于更新的网络安全技术。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

From disruption to ransomware: Lessons From hackers

Since 2020, SARS-COV-2 (COVID-19) has forced organizations to pivot towards digital transformation. Yet, the same period has seen a dramatic rise in hacking and ransomware attacks, especially from internationally malicious actors attempting to simultaneously disrupt and profit. Although a knee-jerk reaction has been the adoption of new-fangled technologies as the only way to prevent, detect, and mitigate attacks, this case study highlights how imperative it is for organizations to proactively review and re-engineer their process inefficiencies and human errors as a systematic counter-strategy. Using fictitious characters reflecting real-world hacking processes and outfits, this case projects the need for a new cybersecurity order, where cybersecure process reengineering and human training deserve greater attention than simply investing in newer cybersecurity technologies.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Journal of Information Technology Teaching Cases Social Sciences-Library and Information Sciences

CiteScore

2.30

自引率

0.00%

发文量

期刊介绍： The Journal of Information Technology Teaching Cases (JITTC) provides contemporary practical case materials for teaching topics in business and government about uses and effectiveness of technology, the organisation and management of information systems and the impacts and consequences of information technology. JITTC is designed to assist academics, scholars, and teachers in universities and other institutions of executive education, as well as instructors of organizational training courses. Case topics include but are not restricted to: alignment with the organization, innovative uses of technology, emerging technologies, the management of IT, including strategy, business models, change, infrastructure, organization, human resources, sourcing, system development and implementation, communications, technology developments, technology impacts and outcomes, technology futures, national policies and standards.