Man-In-Middle Attack Auditing

An auditor happen to discover an error in the human resource system that allowed an employee to hack into the company human resources record systems and change their base salary rate an received a pay raise on two paycheck. The employee was able to eavesdrop on the network using IP spoofing technique to hijack a trusted host on the network and hide their identity in the process. The technique allowed the hijacker to steal and alter sensitive data such as payroll records . The employee also monitor the email traffic about the incident, to use the man-in-middle attack an intercept the auditor email to several individuals at the company explaining what had happen. During the man-in-middle attack, he was able to impersonate the individuals the auditor had email and gain additional access to the financial records from the auditor. With the new permission from the auditor, the employee was able to lower the salaries of the company president and several other employees and transfer those differences into his paycheck.
Once the incident was discover, the auditor should follow the incident response plan and inform the incident response team of the breached in person
The hacker was able to intercept the email communication between the auditor and several individuals and create fake response with the auditor until he was able to gain additional permission to the financial records systems using the man-in-the-middle attack. The social engineering allows the hacker to persuade the auditor to give him the permission he did not originally have to the financial records by impersonating the other individuals, which allowed him to change the lower the salary of the company president and several other employees. Because the email system did not include any authentication protocol, the hacker was able to send the fake emails to the