User awareness training

Access auditing

Strong passwords

Acceptable use policy

Distributing false information about your organization's financial status.

Hoax virus information emails.

Using a sniffer to capture network traffic.

Stealing the key card of an employee and using that to enter a secured building.

Delete the email without opening the attachment.

Reply to the sender and ask if the attachment is safe

Open the attachment because he has anti-virus software installed.

Forward the email to a friend and ask for advice.

A person over the phone convinces an employee to reveal their logon credentials

An attacker intercepts communications between two network hosts by impersonating each host

Malicious code is planted on a system where it waits for a triggering event before activating

An IP packet is constructed which is larger than the valid size.

Data redundancy

Denial-of-service

Wiretapping

Power outage

BIOS password

Chassis intrusion detection

Fingerprint scanner

TPM

Knowledge of passwords

Biological attributes

Ability to perform tasks

Possession of a device