Case Study: The Sony Pictures Entertainment Hack - A Cybersecurity Disaster In 2014, Sony Pictures Entertainment (SPE) found itself at the center of a cyberattack that would leave a lasting impact on the company and the entertainment industry as a whole. The attack, attributed to a group with suspected ties to North Korea, went far beyond typical data breaches. It involved the exfiltration of massive amounts of sensitive data, the destruction of company information, and the crippling of SPE's IT infrastructure. The attackers, who called themselves the "Guardians of Peace," gained unauthorised access to SPE's network. Once inside, they roamed freely, stealing confidential data, including personal information of employees, unreleased films, financial records, and even private emails between executives. This stolen information was subsequently leaked online, causing significant embarrassment and reputational damage to SPE. But the attackers didn't stop at data theft. They deployed destructive malware, effectively a computer virus, that wiped out data from SPE's systems and disrupted its operations. The malware spread rapidly through the network, crippling computers and servers. This caused widespread disruption to SPE's business, forcing the company to take its network offline and resort to manual processes. The attack had significant consequences for SPE. Beyond the obvious financial losses from business disruption and recovery efforts, the company faced a tarnished reputation and legal challenges. The incident exposed serious vulnerabilities in SPE's cybersecurity posture, raising questions about its ability to protect sensitive data. The SPE cyberattack serves as a stark reminder of the importance of robust cybersecurity measures in today's interconnected world. It highlights the diverse nature of cyber threats, from data theft to destructive malware, and the potential for significant damage to both finances and reputation. Identify three major cyber threats evident in the attack