The economics of information security investment
ACM Transactions on Information and System Security (TISSEC)
Detering Highly Motivated Computer Abusers: A Field Experiment in Computer Security
IFIP/Sec '92 Proceedings of the IFIP TC11, Eigth International Conference on Information Security: IT Security: The Need for International Cooperation
Information Systems Research
Journal of Computer Security - IFIP 2000
Expert Systems with Applications: An International Journal
International Journal of Electronic Commerce
Deterring internal information systems misuse
Communications of the ACM
A genetic-based hybrid approach to corporate failure prediction
International Journal of Electronic Finance
Information Systems Research
A study on e-commerce security in Jordan
International Journal of Electronic Finance
International Journal of Electronic Finance
How Internet Security Breaches Harm Market Value
IEEE Security and Privacy
Fuzzy-neural model with hybrid market indicators for stock forecasting
International Journal of Electronic Finance
Mobile payment: A journey through existing procedures and standardization initiatives
IEEE Communications Surveys & Tutorials
Potential indicators for stock index prediction: a perspective
International Journal of Electronic Finance
Hi-index | 0.00 |
This study uses the deterrence theory to explain investors' behaviour towards the announcement of internet security breaches in the public media. Using the event study methodology, we compute the abnormal returns over a three day window. We then use decision tree induction to investigate how firm type and time affect the likelihood that an attack would lead to abnormal returns. The results reveal that investors are more likely to react negatively to announcements involving internet firms. In addition, investors are more likely to react negatively to more recent attacks. We argue that managers, especially in Net firms, should develop effective mechanisms to address security breach since investors interpret a security breach as management's failure to deter computer abusers from violating organisational security policies and controls. From a theoretical perspective, we demonstrate that event study research can use theory to explain investor's behaviour towards announcement of events in the public media.