Business process-based valuation of IT-security
EDSER '05 Proceedings of the seventh international workshop on Economics-driven software engineering research
Defeating DDoS attacks by fixing the incentive chain
ACM Transactions on Internet Technology (TOIT)
Quantifying the benefits of investing in information security
Communications of the ACM - Scratch Programming for All
NordSec '09 Proceedings of the 14th Nordic Conference on Secure IT Systems: Identity and Privacy in the Internet Age
Dependability metrics
A comparison of market approaches to software vulnerability disclosure
ETRICS'06 Proceedings of the 2006 international conference on Emerging Trends in Information and Communication Security
International Journal of Information Management: The Journal for Information Professionals
The economic impact of cyber terrorism
The Journal of Strategic Information Systems
Hi-index | 0.00 |
This study provides empirical evidence that capital markets participants believe e-commerce activity subjects companies to incremental firm-specific risk. We identify and measure proxies for e-commerce risks using a diverse sample of Internet and other firms. We first investigate investors' reactions to "hacker" attacks launched against several of the best-known Internet firms in February 2000. After excluding three firms in our sample that are known subjects of the attacks, we investigate whether remaining sample firms experienced ixcontagiousl. negative abnormal stock returns following the attacks. We find that the extent of negative abnormal returns is associated with several of the e-risk metrics. Investors appear to believe the likelihood a firm will be subject to similar attacks is positively related to its self-disclosed vulnerability to e-risks, and to its designation by outsiders as an Internet firm. The negative abnormal returns observed are substantial in magnitude and do not reverse over time.