Return to search

Don’t let my Heart bleed! : An event study methodology in Heartbleed vulnerability case.

Due to the rapid evolution of technology, IT software has become incredibly complex. However the human factor still has a very important role on the application of it, since people are responsible to create software. Consequently, software vulnerabilities represent inevitable drawbacks, found to cost extremely large amounts of money to the companies. “Heartbleed” is a recently discovered vulnerability with no prior investigation that answers questions about the impact it has to the companies affected. This paper focuses on the impact of it on the market value of the companies who participated in the vulnerability disclosure process with the help of an event study methodology. Furthermore our analysis investigates if there is a different affection to the value of the company based on the roles those companies had in the process. Our results suggest that the market did not punish the companies about the existence of vulnerability. However the general negative reaction of the market to the incident reflects the importance of a strategic vulnerability disclosure plan for such cases.

Identiferoai:union.ndltd.org:UPSALLA1/oai:DiVA.org:umu-90126
Date January 2014
CreatorsLioupras, Ioannis, Manthou, Eleni
PublisherUmeå universitet, Institutionen för informatik, Umeå universitet, Institutionen för informatik
Source SetsDiVA Archive at Upsalla University
LanguageEnglish
Detected LanguageEnglish
TypeStudent thesis, info:eu-repo/semantics/bachelorThesis, text
Formatapplication/pdf
Rightsinfo:eu-repo/semantics/openAccess
RelationInformatik Student Paper Master (INFSPM) ; 2014.16

Page generated in 0.0016 seconds