Which of the following threats is typically associated with the identified vulnerability?

An organization operating in the food industry has recently discovered that its warehouses, which store large amounts of valuable products, are unprotected and lacks proper surveillance, thus, presenting a vulnerability that con be exploited.

Which of the following threats is typically associated with the identified vulnerability?
A . Loss of information
B . Fraud
C . Theft

View Answer

Answer: C

Explanation:

In the scenario provided, the organization operating in the food industry has warehouses storing large amounts of valuable products that are unprotected and lack proper surveillance. This presents a clear vulnerability that can be exploited. The most likely threat associated with this vulnerability is theft.

Theft involves the unauthorized taking of physical goods, and in the context of unprotected warehouses, it becomes a significant risk. Proper surveillance and physical security measures are

critical controls to prevent such incidents. Without these, the organization’s assets are at risk of being stolen, leading to significant financial losses and operational disruptions.

Reference: ISO/IEC 27002:2013 – Provides guidelines for organizational information security standards and information security management practices, including the selection, implementation, and management of controls. It addresses physical and environmental security, which includes securing areas that house critical or valuable assets.

NIST SP 800-53 – Recommends security controls for federal information systems and organizations. It includes controls for physical and environmental protection (PE), which cover measures to safeguard physical locations and prevent unauthorized physical access.