Information Security Threat Catalog

1. Epidemic/Pandemic

2. Environmental

2.1. Fire

2.2. Water-related phenomenon such as plumbing leak or flood

2.3. Extreme temperature and/or humidity

2.4. Earthquake

2.4.1. Environmental contamination such as dust, pollution or corrosives

2.4.2. Tsunami

2.4.3. Volcanoe

2.5. Lightning

2.6. Extreme wind

2.7. Volcanic phenomenon

3. Water Spout

4. Meteorological phenomenon

4.1. Hurricane

4.2. Tornado

4.2.1. Electro-magnetic or radiation phenomenon

4.3. Rain

4.3.1. Flood

4.4. Sleet

5. Denial of Service

6. Single Source

7. Malicious Activity

7.1. Eavesdropping

7.2. Physical

7.2.1. Eavesdropping

7.2.2. Software malfunction or failure

7.2.3. Abuse of privilege

7.2.4. Logical

7.2.4.1. Social Engineering

7.2.4.2. Malicious Unauthorized Logical Access

7.2.4.2.1. Violation such as sharing account and password or bypassing procedures

7.2.4.3. Malware such as virus, worm or trojan

7.2.4.4. Abuse of privilege

7.2.5. Fraud or Forgery

7.2.6. Social Engineering

8. Vandalism of equipment or media

8.1. Vandalism of equipment or media

9. Equipment loss

10. Malfunction

11. Accident such as car or plane crash involving key personnel, facilities, equipment or media

12. Human Error

12.1. Power Outage

12.2. Hardware malfunction or failure such as telecom equipment or utilities

12.3. Fraud or Forgery

13. Process malfunction such as documentation is not available to those who need it

14. Theft of equipment or media, even from trash

15. Miscommunication such as lack of documentation or documentation error