Threats: Examples
Desktop examples (7 potential threats in all):THREAT A-1: Unauthorized access to someone's desktop resulting in disclosure of sensitive data that has been stored on the desktop.
Server examples (15 potential threats in all):
THREAT A-6: Someone accidentally or intentionally infects a desktop with a virus.
THREAT B-7: Someone who has access to the system as part of their job responsibilities uses that access to destroy data or programs.
Network examples (8 potential threats in all):
THREAT B-4: Vulnerable accounts (dormant accounts, retired accounts, accounts without passwords, accounts with weak passwords, etc.) are used to gain access to data or set up future access to the system.
THREAT C-3: Someone uses a packet sniffing tool to capture accounts and passwords to gain access to host systems containing sensitive medical data.
THREAT C-4: Intentional denial of network service. Denial of network service is defined as interference with the availability of any part of the network or its services.