Question 44 For each scenario on the left, identify the most appropriate.preventive.control that best mitigates the internal control issue The accounts payable clerk was able to get information on customers and their balances A hacker used a program to guess the email password of the CEO of a large multinational comparty An employee of a company clicked on a link in an email and downloaded a virus shutting down their computer. A small CPA firm uses one main server and it sits underneath the secretary's desk. A "potential client" came in and while the secretary left their desk to go back to the office, they installed a key logger onto the server. A magnetic tape used to store data backups was lost while it was being transported to an offsite storage location. The data on the tape includes customers' credit card and personal information. A payroll director embezzled $500,000 by adding fictitious names to the company's payroll and [Choose [Choose] Employee Awareness Training Backup and Recovery Procedures Authentication controls Penetration Testing Encryption Authorization controls Physical Access Controls Log Analysis Segregation of duties Intrusion Detection Systems [Choose

Question 44 For each scenario on the left, identify the most appropriate.preventive.control that best mitigates the internal control issue The accounts payable clerk was able to get information on customers and their balances A hacker used a program to guess the email password of the CEO of a large multinational comparty An employee of a company clicked on a link in an email and downloaded a virus shutting down their computer. A small CPA firm uses one main server and it sits underneath the secretary's desk. A "potential client" came in and while the secretary left their desk to go back to the office, they installed a key logger onto the server. A magnetic tape used to store data backups was lost while it was being transported to an offsite storage location. The data on the tape includes customers' credit card and personal information. A payroll director embezzled $500,000 by adding fictitious names to the company's payroll and [Choose [Choose] Employee Awareness Training Backup and Recovery Procedures Authentication controls Penetration Testing Encryption Authorization controls Physical Access Controls Log Analysis Segregation of duties Intrusion Detection Systems [Choose

Accounting Information Systems

10th Edition

ISBN:9781337619202

Author:Hall, James A.

Publisher:Hall, James A.

Chapter12: Electronic Commerce Systems

Section: Chapter Questions

Problem 3MCQ

See similar textbooks

Similar questions

Question #66: Lamar LLC is in the process of updating its revenues and receivables systems with the implementation of new accounting software. James Loden, Inc. is an independent information technology consultant who is assisting Tamar with the project. James has developed the following checklist containing internal control points that the company should consider in this new implementation: Will all data entry clerks and accounting personnel have their own PCs with log‐in IDs and password protection? Will different system access levels for different users be incorporated? Will customer orders be received via the Internet? Has the company identified an off‐site alternative computer processing location? Does the project budget include line items for an upgraded, uninterrupted power source and firewall? Required: In a two (2) page response, describe the control purpose for each point presented in the case.
Alejandro reviewed the user access protocols for Ponder Products. Alejandro is concerned that the accounting system could be subject to malicious attacks on user accounts that are currently protected with a username and password. The system has the capability to send a message to a user's cell phone or email address. How could Alejandro use the messaging capabilities of the system to further protect it from attack? Enable two-factor authentication Enable fingerprint scanners Enable read-only access for all users Enable administrator access for all users
Select the correct answer(s) for the following multiple-choice questions. Note that there may be more than one correct answer. Which of the following statements is (are) true? a. The type of computer fraud that is simplest and most common and that requires the least amount of skill is data b. The type of computer fraud that is the most difficult because it requires the most skill is computer instructions fraud c. The biggest cause of data breaches is organized by hacker groups. d. Losses from the theft of physical assets are much greater than those from the electronic theft of data e. In the absence of controls, it is not hard for a dishonest employee to steal data.
Accounting 1. what measures QuickBooks software implements to prevent cybersecurity breaches.
Sniffer software isa. used by malicious Web sites to sniff data from cookies stored on the user’s hard drive. b. used by network administrators to analyze net- work traffic. c. used by bus topology intranets to sniff for carriers before transmitting a message to avoid data collisions. d. an illegal program downloaded from the Web to sniff passwords from the encrypted data of Internet customers. e. illegal software for decoding encrypted messages transmitted over a shared intranet channel.
5 Which of the following creates an audit trail that protects both consumers and businesses from fraud, serving as a solution to digital fraud and privacy breaches in various industries? Oa. Predictive analytics Ob. Blockchain OC. Cookies d. Big data Oe. Technology disruption
Listed here are two scenarios. For each scenario, discuss the possible damages that can occur.Suggest a preventive control.A. An intruder taps into a telecommunications device and retrieves the identifying codes andpersonal identification numbers for ATM cardholders. (The user subsequently codes thisinformation onto a magnetic coding device and places this strip on a blank bank card.)B. Because of occasional noise on a transmission line, electronic messages received are extremelygarbled.Problem # 4 (30
Question 9 A warning for an individual that someone is trying to obtain and use their personal information. Your answer: fraud fraud alert retrovirus spoofing Clear anser Back Next
A group of IT experts disclosed the “internet cookies” vulnerability of your organisation in a recent online security test. Describe to your management the security concerns that “internet cookies” portend?
Which preventive, detective, and/or corrective controls would best mitigate the following threat, and why? (c) A criminal remotely accessed a sensitive database using the authentication credentials (user ID and strong password) of an IT manager. At the time the attack occurred, the IT manager was logged into the system at his workstation at company headquarters.
STUDY QUESTIONS Why is human behavior considered one of the biggest potential threats to operating system integrity? What are the issues that need to be considered before implementing keystroke monitoring? Describe the three ways on how an audit trail can be used to support security objectives. Explain how poorly designed audit trail logs can actually be dysfunctional. Why would a systems programmer create a back door if he or she has access to the program in his or her day-to-day tasks? PROBLEMS Problem 1: Charles Hart, an accounts payable clerk, is an hourly employee. He never works a minute past 5 P.M. unless the overtime has been approved. Charles has recently found himself faced with some severe financial difficulties. He has been accessing the system from his home during the evening and setting up an embezzlement scheme. As his boss, what control technique(s) can be used to help detect this type of fraud? Problem 2: In 2002, Mr. Rollerball started Mighty Mouse,…
estion 4 Your client calls you because they are going through bank feeds and have a problem. They have a transaction in bank feeds that they know has been entered in QuickBooks Online, but there is no suggested match. All of their other matches have been correct. They tried to find a match and still couldn't find it. What might have happened? (Select 2) The transaction was entered using the wrong date The transaction was entered using the wrong source account The transaction was already reconciled before it came through bank feeds The transaction was posted using the wrong target account