iPremier Case Study. EF. Edward Ferguson. Updated 26 November Transcript. iPremier Denial of Service Attack. Handlers. Zombies. Victim. Attacker. Founded in ; Based in Seattle Washington; Web-based commerce; Sell luxury, rare, and vintage goods; Customers mainly high-income. Develop their own security and facilities for storing data. Upgrade and maintain emergency procedures. Long Term Implementation.

Author: Daill Tuzil
Country: Kazakhstan
Language: English (Spanish)
Genre: Life
Published (Last): 24 January 2010
Pages: 22
PDF File Size: 14.64 Mb
ePub File Size: 9.91 Mb
ISBN: 659-8-42822-773-1
Downloads: 84375
Price: Free* [*Free Regsitration Required]
Uploader: Faushicage

In general, when security has been severely breached and personal data, such as addresses, purchases, or credit card information, has been stolen, a company is required by law to disclose this event.

How did Ipremier Perform? Reacting to client calls, we promptly contacted our data center, Qdata, and worked with them to identify and correct the problem. Without employing security experts, QData was nothing more than a data storage company, which does not prevent intrusion, but also does not assist in examining the attack.

You are commenting using your WordPress. Leave a Reply Cancel reply Enter your comment here To find out more, including how to control cookies, see here: If the attack had been more serious and customer credit card information had been stolen, the course of action would have different. Second, QData was least cooperative in stopping the attack. Management Management at iPremier consisted of young people who had been with the company for some time and a group of experienced managers Well educated technical and business professionals with high performance reputation Values: Responding to this information, we discovered our website had been accessed without our authorization.


Although personal relationships are foundation of most deals made in business, Raj should not have compromised with the customer data security by allowing an unsecure and unreliable data company to host iPremier website and retain customer data. QData was certainly not the company iPremier would have outsourced their data works to. As no data has been stolen, there is no economical reason to disclose the event.

The iPremier Company

Luckily for iPremier, the attack was only a denial of service attack DoS possibly launched by a competitor or a script kiddie Austin, jpremier I sincerely regret any inconvenience you may have experienced as a result of an unauthorized intrusion to our website. Technically Qdata is the responsible party in this case.

Documents Flashcards Grammar checker. Menu Skip to content. It is best for customers to hear about company mistakes directly from iPremier, rather than hearing it from third party sources, which could make the situation even more catastrophic.

You can be confident that our computer security experts continue to address the situation and have already taken steps to strengthen our data-related security. If iPremier had security experts in ipremierr team, they would have been able to understand the attack and stopped it immediately, even though QData did not have the security experts.

iPremier Company: Denial of Service Attack Case Study by on Prezi

A formal contract is not formed in a B2C relationship which places iPremier in the MARKET section of the matrix as it provides goods, processes payments and maintains customer profiles. You are commenting using your Facebook account.


Avoid Customer Discomfort No customers want to feel that they or their information was at risk for too long before being notified. Warren Spangler We have a problem…. Furthermore, the level of security seems to be high enough, even though there is some room for improvement.

Provide arguments to support a decision to do nothing and continue business as usual. Public relations Inform the press and customers about: The company faced serious security issues, which led to their immediate ipreier.

I personally promise to update you with additional information as it becomes available to me. Fill in your details below or click an icon to log in: Caxe are three main reasons to disclose this situation to the legislators and the public; legal, economical, and moral. On January 12, several callers informed our technology department that they were unable to access our website.

iPremier Case Study by Stefan Leonhardt on Prezi

If the plans were in place, it would have been easier for the CIO to stop the attack faster and perhaps backup data centers running the site live while preventing the data from intrusion. You are commenting using your Twitter account. The way the company responds to its first intrusion servers as a reference point for all constituents consumers, media, investors, etc.