Академический Документы
Профессиональный Документы
Культура Документы
Business GN 10
Case on Cyber Attacks
Submitted by
Rajesh Polampalli (1401108)
Vikas Chandra (1401109)
Vimal S(1401110)
Vipul Gupta (1401111
The Case
Cyber Attacks: Disclose or Not Disclose?
Cyber attacks on American companies have become frequent, but
not all companies respond to security breaches the same way.
Companies such as Facebook, Twitter and Apple, have voluntarily
gone public with their security troubles. Alternatively, a number of
companies have continued to deny cyber attacks, despite reports
stating otherwise; including, Exxon Mobil, Coca-Cola, Baker Hughes,
and others. The U.S. government has encouraged transparency on
cyber attacks as part of a wider effort to protect American intellectual
property. Advocates of disclosing breaches claim it will set a
precedent for other companies to get more active in fighting cyber
attacks. The majority of company lawyers advise not to disclose,
pointing to potential shareholder lawsuits, embarrassment and fear of
inciting future attacks. Health and insurance companies must
disclose breaches of patient information, and publicly traded
companies must when an incident affects earnings.
Utilitarianism
To analyze an issue using the utilitarian approach, we first identify the
various courses of action available to us. Second, we ask who will be
affected by each action and what benefits or harms will be derived from
each. And third, we choose the action that will produce the greatest
benefits and the least harm. The ethical action is the one that provides the
greatest good for the greatest number.
Step 1:
NON-Disclose
DISCLOSE
Following the same approach, we have two course of actions, viz. disclose
the attacks to public and do not disclose.
Step 2:
Who will be harmed: account
holders of companies like
Facebook, Gmail, Twitter
Benefits: Future of company
remain intact, Maintain
confidence level
Decision:
Step 3:
1. Disclose where public information is involved. Like Social
Networking Sites, Insurance Companies, Interpol, Banks, Mails
etc
2. Dont Disclose for companies which does not involve public
Rights Theory
Partnerships
Public is
shareholder of
company, thus
have full right to
know about the
company which
they have
invested or going
to invest
Ex: Ford, FB,
Google
Disclose
Not-Disclose
With Public
information
Even if it is sole
proprietorship, it
involves crucial
public
information
So the public
should know
about the
breaches.
Ex: Companies
like flipkart, we
Disclose
chat
Justice Approach
Conclusion