Scribd Logo
Upload

Welcome to Scribd!

  • Is Individual Assignment

    Uploaded by

    Lim Jin Wei
    20 views5 pages
    This document discusses security, privacy, and ethical issues at Shopee, the leading e-commerce platform in Southeast Asia. It identifies two main issues: malicious insiders who have legitimate system access and can steal or destroy data; and malware like SQL injection that can access databases and infect servers. To address these, the document recommends limiting employee access, frequent software updates to fix vulnerabilities, and monitoring access logs. Overall it analyzes current security threats at Shopee and provides preventative measures to improve protection of data and systems.

    Original Description:

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document discusses security, privacy, and ethical issues at Shopee, the leading e-commerce platform in Southeast Asia. It identifies two main issues: malicious insiders who have legitimate system access and can steal or destroy data; and malware like SQL injection that can access databases and infect servers. To address these, the document recommends limiting employee access, frequent software updates to fix vulnerabilities, and monitoring access logs. Overall it analyzes current security threats at Shopee and provides preventative measures to improve protection of data and systems.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    20 views5 pages

    Is Individual Assignment

    Uploaded by

    Lim Jin Wei
    This document discusses security, privacy, and ethical issues at Shopee, the leading e-commerce platform in Southeast Asia. It identifies two main issues: malicious insiders who have legitimate system access and can steal or destroy data; and malware like SQL injection that can access databases and infect servers. To address these, the document recommends limiting employee access, frequent software updates to fix vulnerabilities, and monitoring access logs. Overall it analyzes current security threats at Shopee and provides preventative measures to improve protection of data and systems.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 5

    NAME:

    TP NUMBER:

    MODULE TITLE:

    INTAKE CODE:

    ASSIGNMENT TITLE:

    NAME OF LECTURER

    DATE DUE:
    Content
    Video name and access link

    Video that I have chosen information:

     Video Name: The Humble Beginning of Shopee


     Video access link: https://youtu.be/XBK-BwhTZbo

    Problem security, privacy and ethical problems was found in E-business at Shopee

    Due to Covid-19 pandemic, many countries have been forced to lock down.
    Therefore, citizens were forced being stay at home while the shop also needed to close
    temporary. Online shopping would be an alternate choice for their citizen to go online
    shopping. Hence, Shopee is now the leading e-commerce platform in Southeast Asia and
    Taiwan. That’s many security, privacy and ethical problems was found in e-commerce at
    Shopee.

    One of the security can be found is Malicious Insiders. Malicious insiders are people
    who have the legitimate access to the systems and database like employees, business
    associates or contractors. They might use the access to destroy data, steal data or sabotage the
    systems. Malicious Insiders does not include a loyal or good staft that accidentally put
    shopee’s cyber security at risk or spill data. This is a common attack from insider that
    frequently happened around the world.

    Other than that it would be Malware. Malware is simply referring to a kind of


    Malicious software programs. Attackers will usually inject it to shopee’s web pages or files
    with these malicious programs to let them obtain the access to each online retails stores. It is
    something such as SQL injection that can easily insert malware into a website’s database
    allowing it to access the data stored in the database. Malware could also possible be an email
    spam that shopee might not be aware of. By using the email attached the file could possible
    send to shopee’s employees or shoppers that they can accidentally download the file with
    malware and activate them. With these attackers could gain their access to shopee’s database.
    It could also infect shopee’s server and database that they connected with identifying hidden
    code and can replicate itself.
    Preventive measurements or improvement

    Nowadays technology is advancing in a very fast pace which make people hard to
    follow up the knowledge. Therefore, here are some suggestion for shopee to do some
    preventive measurement or improvement to their security, privacy and ethics. One of the
    preventive measure they could do to prevent malicious insiders attack is limiting the amount
    of access that shopee’s employees, contractor or former employees. Which mean shopee may
    needed to set up a logical access control policies to implement the principle of least privilege
    and moniter the access of audit log and transaction log to prevent people to destroy the data
    or selling them. However if it was found that malicious attack happened, the insider’s rights
    would be revoked. With this, shopee can contact the police to take action to prevent further
    damage action to the business like stolen data, destroyed data and more.

    Another preventive measures can be keeping the shopee’s software, app or website
    updated. Shopee must ensure several software or web to update suck as operating system,
    general applications, anti-malware and website security programs are updated to their latest
    patches. The Shopee’s apps and webs should also have a frequent updates to protect their
    employees and customers. The reasons for updating these software is to prevent the malicious
    hackers to attack Shopee’s servers, webs or apps. With latest updates might be fixed some
    bugs or vulnerabilities in old version software codes. In the newer version they may include
    fixed the bugs and vulnerabilities.
    Citation

    -, touhid58, 2019, How to prevent malware attacks on websites? [Online]. Available at:
    https://cyberthreatportal.com/how-to-prevent-malware-attacks-on-websites/ [Accessed:
    2 November 2020].

    Anon, 2020, Malicious insiders [Online]. Available at: https://www.cyber.gov.au/acsc/view-


    all-content/threats/malicious-insiders [Accessed: 2 November 2020].

    Menzheres, A., 2018, Recent E-commerce Security Issues and Best Practices (2018)
    [Online]. Available at: https://www.eteam.io/blog/e-commerce-security-issues
    [Accessed: 2 November 2020].

    Purkis, M., 2020, Top 5 Most Common Security Issues and How to Fix Them [Online].
    Available at: https://www.liquidweb.com/blog/five-common-web-security-problems/
    [Accessed: 2 November 2020].

    Shankdhar, P., 2020, SoakSoak Malware and How to Protect Your WordPress Website
    [Online]. Available at: https://resources.infosecinstitute.com/topic/soaksoak-malware-
    protect-wordpress-website/ [Accessed: 2 November 2020].

    Shopee, 2020, What is Shopee ? [Online]. Available at:


    https://help.shopee.sg/sg/s/article/What-is-Shopee [Accessed: 2 November 2020].

    You might also like