摘要:An enhanced Amendment of Personal Information Protection Law including punitive damages and compensation damages is passed in the national assembly in 2015. Privacy leaks and secondary damage could cause the huge loss which can impact the issue of business permanence. Corporate should widen the scope of the personal information protection to their employee instead of just focusing on their customers privacy. In this paper, We can see that hacker hacked employee personal information including email address byAPT attack, Hacker use hacked email credential information to steal B2B trade transaction secrets, Hacker utilize all the information to manipulate the transaction payment to fake Bank Account by Man in the Middle Fraud methodology. This case shows us that employees privacy leak can bring the damage to business in the B2B transaction. Author is suggesting FIVE counter plans as a result of this single case qualitative research methodology which is exploring of the case followed by time line, having interview with relevant personals, analyzing internal documents and reports.
关键词:Privacy; Privacy leak; Identity Theft; B2B; Man in the Middle
