Free Essay

Data Breaches

In:

Submitted By dBax617
Words 1557
Pages 7
Daniel Baxter
Nico Ferragamo
Han Vo
Romilla Syed
IT 110
8 December 2015
Data Breaches
The Case
In July of 2014 JPMorgan Chase, a multinational banking and financial services holding company was hacked. JPMorgan Chase is the largest bank in the United States, the sixth largest bank in the world, and the world’s third largest public company. Initial reports from JPMorgan Chase stated that the attack had only breached about one million accounts. Further details revealed that the hack breached the accounts of seventy-six million households (roughly two-thirds of the total number of households in the United States), and about seven million small businesses. While the hack began in July, it was not fully stopped until the middle of August, and it was not disclosed to the public until September. The hack is considered to be one of the most serious attacks on an American Corporation’s information systems and is one of the largest data breaches in history. JPMorgan Chase claims that the login information associated with the accounts (such as social security numbers and passwords) was not compromised, and the information that was stolen had not been involved in any fraudulent activities, however, the names, email addresses, physical addresses, and phone numbers on the accounts were taken by the hackers. The hack was believed to have been committed by a group of Russian hackers. It’s also believed to have been part of a large ring of attempted attacks on as many as nine banks and financial corporations. These include, but are not limited to: Citigroup, HSBC Holdings, E*Trade, Regions Financial Corporation and payroll-service firm Automatic Data Processing (ADP). The only other institution believed to have had data stolen was Fidelity Investments. Dan Kaminsky, a researcher and chief scientist at the White Ops Security Company, eloquently summarized the effect that the digital age is having on the economy: “We’ve migrated so much of our economy to computer networks because they are faster and more efficient, but there are side effects” (New York Times Web).
The Implications
The timing of this data breach was especially inopportune, as it occurred when consumer confidence in American corporations’ security has already been compromised. When the extent of the attack became more apparent, JPMorgan Chase’s Executives had to scramble in an attempt to contain the fallout, as well as convince their customers that no money had been taken from their accounts and that their financial information was still secure. Jessica Silver-Greenberg, Matthew Goldstein, and Nicole Perlroth of the New York Times discussed the effect this breach had on the American public’s view of banks:
Still, until the JPMorgan breach surfaced in July, banks were viewed as relatively safe from online assaults because of their investment in defenses and trained security staff. Most previous breaches at banks have involved stealing personal identification numbers for A.T.M. accounts, not burrowing deep into the internal workings of a bank’s computer systems. (New York Times Web)
Although no financial information was breached, the virtual seriousness of the breach demonstrated how vulnerable financial institutions are to cyber-attacks. In past cyber-attacks on financial institutions, such the 2011 hack of the NASDAQ stock market, the hackers were unable to breach the part of the system that handles the actual information (in this case, the stock trades). The implications of the breach are not only that the customers’ confidence in their bank was shaken, or even that millions of customers’ data could now be used in phishing scams, but also that this breach set a new precedent for what could happen if a corporation’s security is less than stellar.
The Measures Big companies spend incredulous amounts of money, a quarter of a billion dollars in this case, on their security systems, which in theory should make attacks such as the one on JPMorgan Chase a thing of the past. The problem is, while these sophisticated and expensive are all but fool proof, they are not idiot proof. You see, the bank instituted two-factor authentication on their servers prior to the attack. This meant that any hackers would need access to a customer’s email address or phone in order to gain access to their account. This specific security measure could have prevented the hack altogether. The only problem was an oversight. There was a much smaller hack, in the Spring of 2014, in which some employee data when hackers gained access to the bank through a, rather outdated, server that had not been updated to support two-factor authentication. The hacks could have been stopped there when the server was discovered, but instead it was ignored, until the customers’ data was breached that is. This issue seems simple enough to fix, but it is oddly complex. In this specific case, the vulnerability was brought to the banks attention during the earlier and smaller data breach, which in my opinions means that it should’ve been fixed immediately with a simple server update, or server shutdown. But what if there was no earlier breach? If there was no early breach, then the outdated server would never have been brought to the bank’s attention, and it would’ve been much harder to fix. The bank’s electronic presence is so vast that a small oversight like that could be the easiest thing in the world to fix, but it could still be the hardest thing in the world to find. The best way to combat oversights like this would be to have scheduled server maintenance as often as possible without interfering with business. The problem with that is because of the sheer size of many companies, including JPMorgan Chase, any time a server is down for maintenance or testing, it indubitably will interfere with business. This causes corporations to overlook regular server maintenance and just hope for the best, leaving them wide open to attacks. To make breaches like this a thing of the past corporations will have to start putting security ahead of profits. The three main implications of this are as follows: the customers’ confidence in their bank was shaken, the customers’ data was perfect for use in phishing scams, and many people, including people who aren’t customers of the bank, had their confidence shaken in all corporate security. In order to work against their customer’s confidence being shaken, the bank need to make a commitment to make security of their customers’ data a higher priority. They should perform regular server maintenance and testing at least once a month, in order to prevent any similar oversights that may occur, and they should also make sure all customer data is encrypted so that even in the case of a breach the information is safe. Encrypting the information is also an excellent way to prevent against phishing scams. To ensure their customers’ don’t fall for the emails that have already gone out though, they could and should send out emails to everyone’s whose data was breached warning them against phishing scams and telling them the rules to identifying phishing emails. It’s going to be much harder to combat everyone’s faith in corporate security being shaken, but the best way to fight this is to go the route of Mega, the file hosting site. What Mega does with their files is very unique in that it doesn’t even give the company access to the encryption key. This formulas would have to be adjusted for different kinds of corporations like banks where the company needs the information sometimes, but they could make it so the customer would just share the encryption key, if and when the bank needed to access the info, and then the key would be changed. This could prove to be a bit of a hassle for the customer, but it could be an opt-in program for customers and businesses who need the extra security.
The Conclusion In 2014, America’s largest bank was breached and two-third of the population of the United States as well as seven million small business had their data stolen due to an outdated, and overlooked, server. This caused the customers’ confidence in their bank to be shaken, and meant that millions of customers’ data could now be used in phishing scams. It also meant that this breach set a new precedent for what can happen if a corporation’s security is subpar. The best way to make sure this doesn’t happen again is to implement regular server maintenance, as well as to encrypt customer data. It would be a decent idea to give the customers sole possession of the encryption key so they can’t be found on the bank’s servers.

Works Cited
"JPMorgan Chase Hacking Affects 76 Million Households." DealBook JPMorgan Chase Hacking Affects 76 Million Households Comments. N.p., 02 Oct. 2014. Web. 08 Dec. 2015. <http://dealbook.nytimes.com/2014/10/02/jpmorgan-discovers-further-cyber-security-issues/?_r=0>.
"Neglected Server Provided Entry for JPMorgan Hackers." DealBook Neglected Server Provided Entry for JPMorgan Hackers Comments. N.p., 22 Dec. 2014. Web. 08 Dec. 2015. <http://dealbook.nytimes.com/2014/12/22/entry-point-of-jpmorgan-data-breach-is-identified/>.
Wikipedia. Wikimedia Foundation, n.d. Web. 08 Dec. 2015. <https://en.wikipedia.org/wiki/2014_JPMorgan_Chase_data_breach>.
Wikipedia. Wikimedia Foundation, n.d. Web. 08 Dec. 2015. <https://en.wikipedia.org/wiki/JPMorgan_Chase>.

Similar Documents

Premium Essay

Data Breaches

...How Do Data Breaches Occur? * Employee loses an unencrypted portable device (smartphones, laptop, thumb drive, backup tape) * Property crimes (computers prime targets) * Inside job (employee steals information) * Stray faxes, emails * Phishing scams and increasingly, Spear-Phishing (social engineering) * Malware / virus attacks (especially when working remotely on an unsecured network) * Failure to purge/scrub computing devices scheduled for destruction * Weaknesses in "Cloud" security Greek Market Vs Global Market – Security Incidents PWC – Information Security Survey 2013 “Must Do” Security Actions 1. Implement User Education & Awareness : * Communicating safely and responsibly * Using social media wisely * Transferring digital files in a safe way * Proper Password usage * Avoiding losing important information * Ensuring only the right people can read your information * Staying safe from viruses and other malware * Who to alert when you notice potential security incident? * Knowing how not to be tricked into giving information away This will ensure that all personnel who have access to information and information systems understand their daily responsibilities to handle, protect and support the company’s information security activities 2. Keep System up to date Systems and software, including networking equipment, should be updated as patches and firmware upgrades become...

Words: 681 - Pages: 3

Premium Essay

Data Breaches

...Top Six Data Breach Trends for 2014 April 28, 2014 Article Reference Griffin, Joel. "Top six data breach trends for 2014." SecurityInfoWatch.com. N.p., 10 Jan. 2014. Web. 29 Apr. 2014. Summary This class has been absolutely phenomenal. I have been in the tech industry for about 5-6 years now and just recently started developing iOS apps and websites about 1-2 years ago and am still new and learning each and every day, but I haven’t really ever enjoyed a class this much. I have been reading articles each week for these research papers that are required weekly and due to the requirement of breaking them down and performing a “dive deep” on them, I have really been able to relate what we are learning in school to actual life and real life situations. The article that I choose for this week is from Security Info Watch and it discusses the future of data breaches this year and things that we could encounter over the time frame of this year and next decade as technology continues to grow at the rate it is growing. It compare the big breach with Target and aligns it to other situations that are possibilities with the way we use our technology. One of the big theories that the article through out was that we are going to run into issues with all of this cloud computing and big data and that society is very vulnerable to a big data cloud breach. Apple has started the whole ball rolling with cloud computing storing all of your...

Words: 681 - Pages: 3

Premium Essay

Argumentative Essay: Target's Data Breaches

...In my opinion I don't think Target made any mistakes. A data breach with millions of peoples information can happen to anyone big name company. Everything in the world today is digital so it makes everything much more accessible. Judicial development in the cybersecurity arena is still evolving, as courts wrestle with how the theft of personal information, proprietary business data, or even someone’s identity should be properly prosecuted and defended (Hooker, Pill, 2016). Following the well-publicized 2014 cyber-theft of credit and debit card information belonging to more than 40 million Target Corporation customers, Target shareholders filed four separate shareholder derivative actions, all of which were later consolidated into a single...

Words: 343 - Pages: 2

Free Essay

Personally Identifiable Information (Pii) and Data Breaches

...(PII) and Data Breaches By Stevie D. Diggs University Maryland University College IFSM201 Section 7974 Semester 1309 Personally Identifiable Information (PII) and Data Breaches Knowing and training on personally identifiable information (PII) is important in today’s society. There has been research on data breaches and identity theft that links them both together. This is to help personnel have a clear understanding on the impact of what is at steak and an explanation of PII. Many businesses and organizations have different definition for PII because of the classification of data for each, and that is why understanding PII is important. Examples of PII include, but are not limited to the following: full name, maiden name, mother‘s maiden name, or alias; personal identification number, social security number (SSN), passport number, driver‘s license number, taxpayer identification number, or financial account or credit card number; address information, street address or email address; personal characteristics, including photographic image, fingerprints, handwriting, or other biometric data. How do you protect PII? Who has access to PII? Who are affected by data breaches and identity theft? How to prevent data breaches and identity theft? The research introduced in this essay is from Verizon along with multiple articles involving military and organizations. PII is defined definitely by military and organizations. Training along with knowing ways to prevent data breaches and identity...

Words: 1541 - Pages: 7

Free Essay

Cybersecurity Target/Neiman Marcus Data Breaches

...The title says it all. “Can data breaches be prevented? Congress and companies answer: For now, no.” At a congressional hearing that took place Tuesday, February 4th through Wednesday, February 5th, executives from Target and Neiman Marcus reported that they are still in the dark as to how they could have better secured their consumers from cybercriminals. The breaches to the two industry titans occurred between July and October of 2013 for Neiman Marcus, who logged some 1.1 million customers whose payment card and personal information were hacked, and between Thanksgiving and December 8th of last year for Target, where payment card information of over 40 million customers and the personal contact information of some 70 million people was compromised. These recent hackings “compromised the privacy and security of millions of consumers… (and the ensuing) erosion of consumers’ confidence, with data breaches on the rise affecting retailers, Internet companies and others, could hinder the U.S. economy’s recovery,” said Sen. Patrick Leahy (D-VT), the chairman of the panel of the Senate Judiciary Committee hearing testimony from the Target and Neiman Marcus officials. Unfortunately for this situation, the primary legal tool against cyber criminals is the Computer Fraud and Abuse Act, which “mainly prohibits unauthorized access to a computer – a limited and increasingly outdated legal standard,” said Seattle U.S. Attorney and chair of the Attorney Generals cyber-crime enforcement...

Words: 742 - Pages: 3

Premium Essay

Case Study Data Breaches and Regulatory Requirements

...qwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmrtyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmrtyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmrtyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmqwertyuiopasdfghjklzxcvbnmrtyuiopasdfghjklzxcvbnmqwer...

Words: 1570 - Pages: 7

Premium Essay

The Importance of Measuring Enterprise Impact

...information. Huge amounts of raw data are produced during every operational transaction in the company. Processing raw data into valuable information allows an enterprise to take more accurate decisions into action. Information technologies give support in big business systems like (ERP) Enterprise Resource Planning, utilized in recognizing, extracting and analyzing business data, such as, sales revenue by product and/or department. Measuring data is difficult, and companies have to have complex systems for tracking ERP. Outsourcing Data With changing times, systems need to have data energy uses calculated into the core processes to retain more accurate data. Measuring impact is the recognized way in which you show the value your organization is delivering to its recipients and the general public as a whole. Often, companies feel the need to cut internal energy use; therefore, they outsource data processing duties. Businesses must be cautious when outsourcing data. This outsourcing can cause serious issues if the outsourced work is inaccurate or worse, manipulated to cause intentional damage to the company. It is difficult to have patience with outsourced companies that produce inaccurate work, as that is the main objective: they were hired to do the job proficiently and accurately. Having internal processes in place for data formulas can cut down significantly on misuse and incorrect data entry, as well as cut back on security breaches. Making sure that the data is properly reduced and...

Words: 360 - Pages: 2

Free Essay

1111

...With Big Data Comes Big Responsibility (https://hbr.org/2014/11/with-big-data-comes-big-responsibility) Big data and the “internet of things”—in which everyday objects can send and receive data—promise revolutionary change to management and society. But their success rests on an assumption: that all the data being generated by internet companies and devices scattered across the planet belongs to the organizations collecting it. What if it doesn’t? Alex “Sandy” Pentland, the Toshiba Professor of Media Arts and Sciences at MIT, suggests that companies don’t own the data, and that without rules defining who does, consumers will revolt, regulators will swoop down, and the internet of things will fail to reach its potential. To avoid this, Pentland has proposed a set of principles and practices to define the ownership of data and control its flow. He calls it the New Deal on Data. It’s no less ambitious than it sounds. In this edited conversation with HBR senior editor Scott Berinato, Pentland talks about how the New Deal is being received and how it’s already working—in a little town in the Italian Alps. HBR: How did you come to be concerned about data collection and privacy? Pentland: In my research at the Media Lab, I use wearable sensor technology that measures tone of voice, movement, gesticulation—innate behaviors—to collect very personal data about how people communicate with one another. When I started that work, I was impressed by the power of the data being generated...

Words: 2403 - Pages: 10

Premium Essay

New System Proposal

...New System Proposal Team A CIS/207 February 23rd 2014 Riordan Manufacturing requires an innovative information system proficient in the organization of product sales, which allows management of data by employees from computers and mobile devices. This new system would contain customer records and be password protected for sales agent’s individual accounts and further promote confidentiality of client and corporate data. Information security and carbon footprints will need to be addressed with creation of a new data warehouse. The cloud computing system would be an idyllic system for addressing the needs of Riordan Manufacturing and would be an inexpensive conversion from the old systems. Cloud computing initially evolved from visualization. The use of visualization would allow Riordan to separate its software, business applications, and data from hardware sources that may experience an issue. The cloud offers storage, network, and hardware virtualization. Businesses can set up private clouds as storage warehouses for company information. Information technology virtualization enhances the business’s assets and offers lower administration fees, reduced maintenance, and consolidation of company information for strategic marketing initiatives in one location. With this in place, there would be less risk of possible loss of important and pertinent information. The entire marketing division would be combined into one superior database for easier comparison of information. Switching...

Words: 1178 - Pages: 5

Premium Essay

Determing Hris

...Golaub May 4, 2015 Business and organizations around the world rely on human resource information systems (HRIS) to keep their business running efficiently. HRIS systems provide businesses with rapid data access, information exchange, and strategic advantage (Flynn, 2015). They can be very complex and computerized and are available from software firms, consulting firms or can be home grown. However, as technology and laws change, HRIS systems must also be fluid in order to be relevant and useful. Rapid change in technology and government regulations can make long term planning very difficult when determining if an HRIS needs to be replaced or updated. To start, the company must plan forward and decide what needs must be met as the company grows. Looking at previous market trends will not be enough. Examining trends in technology will be one of the first tasks. Just in the last decade, cloud computing and SaaS has become much more prevalent and is causing a change in how people utilize HRIS. Instead of having to purchase bulk licenses, companies are now using SaaS to power their HRIS. This means a change in computing, hosting and training. This also means that the security surrounding HRIS must be more robust and paramount, especially since identity theft and data breaches have become more common. Besides technology, when planning ahead for an HRIS, companies need to look at how government regulations and laws are changing. Privacy is becoming more and more important...

Words: 1193 - Pages: 5

Premium Essay

Pros and Cons of Could Based Computing

...(e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction” (Mell). In other words, the cloud uses the Internet to store, access, and process data. Before cloud computing, the only other way to store and process data was through in-house servers, which are simply a server located within the company. The invention of all new technology brings controversy because the amount of issues that could come from it must be compared to the amount of benefits. There are three different types of cloud computing, all of which can be incredibly beneficial for both personal and business use: Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) (Turim-Nygren). Although they all function similarly, they take on their own roles and process information differently. The most commonly known is cloud storage such as Dropbox and Google Drive, which are categorized as SaaS. The pros and cons of cloud computing have been debated over the past decade, and individuals and businesses alike have weighed the good against the bad when choosing whether to use it to store and process their data. The decision whether to use cloud computing or in-house servers depends on the type of company and resources it has at its disposal, along with the size and computing needs of the company. Many companies are choosing to follow the hybrid model of computing...

Words: 2142 - Pages: 9

Premium Essay

Cyber Liability

...2013 7/15/2013 ORGANISATIONAL PROFILE History New India Assurance India Limited, incorporated on July 23rd 1919 was founded Sir Dorab Tata who was a founding member of The House of Tata’s. I got further nationalized in the year 1973 with merger of Indian companies. Present Position New India Assurance India Limited has vast presence all over the country and it is also doing remarkably high business. The company’s gross premium (in India) has increased tremendously over the years 2010-2012. It was Rs. 8542.86 crores in the year 2011-2012, as against Rs. 7097.14 crores in the year 2010-2011. Also, the company’s total assets are as high as Rs. 42162.74 crores as on 31st March 2012. The company has an extensive network of offices covering each and every state and other regions of India as shown in Figure1. . Figure 1.New India Assurance India Limited presence all over the country. Such large and extensive network makes NIA Rank No. 1 in the Indian market. Not only this, the company is also the largest Non-Life insurer in Afro-Asia excluding Japan. It is infact also the first Indian non-life company to reach Rs. 10073.88 crores Gross Premium. International Presence NIA also provides global Re-insurance facilities. It has its over-seas presence in countries like Japan, U.K, Middle East, Fiji and Australia. Overseas operations commenced in 1920. The company has operations in 20 countries in the year 2011-12 which spans through a...

Words: 14892 - Pages: 60

Premium Essay

Dlp Dlp Dlp

... SANS Institute InfoSec Reading Room This paper is from the SANS Institute Reading Room site. Reposting is not permitted without express written permission. Data Loss Prevention AD Copyright SANS Institute Author Retains Full Rights . 08 , Au tho rr eta ins ful l rig hts Data Loss Prevention 20 Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 Prevention Data Loss 06E4 A169 4E46 te GIAC Gold Certification Ins titu Author: Prathaben Kanagasingham Advisor: John C.A Bambenek © SA NS Accepted: August 15th 2008 Prathaben Kanagasingham © SANS Institute 2008, 1 As part of the Information Security Reading Room Author retains full rights. . ins Table of Contents ful l rig hts Data Loss Prevention Introduction....................................................................................3 2. Deeper Look at DLP Solution........................................................4 3. Identification of Sensitive Data......................................................6 tho rr eta 1. Data in Motion.....................................................................8 3.2 Data at Rest.....................................................................…9 3.3 Data at End Points.............................................................10 08 , Au 3.1 Choosing a Vendor................................................

Words: 8522 - Pages: 35

Premium Essay

Business Intelligence

...specifically the impact on privacy. The data gathered through various business intelligence technologies, while it may not be personally identifiable information such as name and/or social security number, the data provided to businesses gives them a greater insight into consumer behavior. This provides the businesses with information to leverage additional sales and services. Businesses gather all kinds of data on consumers, often sharing with other related competitors, to obtain a better view of the consumer behavior, including trends and associations. The information obtained through business intelligence may or may not be personally identifiable, it may still be sensitive in nature. Does it cross the line ethically? Are there other techniques to gather this information while maintaining privacy for the consumer? In this paper, the ethical issues of privacy on business intelligence will be explored to determine if the business intelligence outweighs the intrusion on privacy. Key concepts in this review include privacy, big data analytics, business intelligence, ethical awareness framework, data mining, hackers, and the Organization of Economic Cooperation and Development (OECD) guidelines. Data mining is discovering knowledge from large amounts of data (Sharda, Delen, & Turban, 2015). Although primarily thought to be the sole responsibility of information technology (IT), it is not necessarily so (Berendt, 2007). The determination of what data is collected reaches beyond IT...

Words: 2246 - Pages: 9

Premium Essay

Data Mining A1

...FIT3002 Applications of Data Mining Assignment 1 (100 marks) This assignment requires you to use the data mining tool, WEKA, to build a good model from a given set of data; and then write a report to describe the process. The Hyperthyroid data set is for the study of hyperthyroid disease. The data is supplied by Garvan Institute and J. Ross Quinlan. An instance in this data set is a diagnosis record for a single patient, and the data set contains a total of 2800 instances. Each instance is represented by 29 input attributes and a class attribute indicating whether the diagnosis for the patient is hyperthyroid, T3 toxic, goitre, secondary toxic, or negative. The attribute information is given below: age: numeric. sex: M, F. on thyroxine: f, t. query on thyroxine: f, t. on antithyroid medication: f, t. sick: f, t. pregnant: f, t. thyroid surgery: f, t. I131 treatment: f, t. query hypothyroid: f, t. query hyperthyroid: f, t. lithium: f, t. goitre: f, t. tumor: f, t. hypopituitary: f, t. psych: f, t. TSH measured: f, t. TSH: numeric. T3 measured: f, t. T3: numeric. TT4 measured: f, t. TT4: numeric. T4U measured: f, t. T4U: numeric. FTI measured: f, t. FTI: numeric. TBG measured: f, t. TBG: numeric. referral source: WEST, STMW, SVHC, SVI, SVHD, other. class: hyperthyroid, T3 toxic, goitre, secondary toxic, negative. Your tasks are to: (a) analyze the data, and convert the data as suggested above, build several models from it and choose the best model, and (b) to write a report...

Words: 973 - Pages: 4