RISK-0001
Risk summary
- Likelihood
- 4
- Impact
- 5
- Score
- 20
- Level
- Critical
- 01
Asset
Customer Database
Business object or system that needs protection. - 02
Threat
Ransomware Campaign
Event, actor, or condition that can create harm. - 03
Vulnerability
Unpatched VPN / Weak Monitoring
Weakness that makes the threat relevant. - 04
Risk
Because of ransomware actors exploiting an unpatched VPN and weak monitoring affecting the customer database, customer data compromise and operational disruption may occur.
Scenario evaluated with likelihood, impact, and ownership. - 05
Treatment
Mitigate through threat intelligence monitoring, patch management, detection engineering, and incident response readiness.
Decision path for reducing, accepting, transferring, or avoiding risk.
Controls that treat the risk
Evidence that proves operation
Assessment Rationale
Likelihood
The likelihood is high because externally exposed VPN infrastructure is commonly targeted by ransomware groups.
Impact
The impact is critical because compromise of customer data could cause regulatory, operational, financial, and reputational damage.
Residual Risk
After treatment, residual risk is estimated as medium.
Review Notes
Review monthly or when new ransomware advisories are published.
Software Object Mapping
- risk
- threat_intelligence
- control
- evidence
- Iso27005
- Risk
- Ransomware
Note Metadata
Aliases: RISK-0001
Source: 05-Risk-Knowledge-Base/RISK-0001-Customer-Data-Compromise-Ransomware.md