Cybersecurity Threat Model Report for B&C Insurance: MIS607 Analysis

This report provides a comprehensive analysis of a cybersecurity threat model, focusing on a case study involving Business & Communication Insurance (B&C Insurance). The report begins with an introduction to cybersecurity and defines the context of the B&C Insurance case, which involves a ransom email and potential data breach. The task involves identifying and analyzing various cyber threats, including malware, computer worms, spam, and phishing, and their impact on the organization. The report outlines the process of threat modeling, including validating threats, identifying risks, and developing methodologies like STRIDE, DREAD, and TRIKE to mitigate them. It also explains the importance of Data Flow Diagrams (DFDs) in representing data movement within a system. The conclusion emphasizes the significance of cybersecurity in protecting businesses from unethical activities and data breaches. The report references relevant literature and journals to support its findings.