Risk, Inherent Risk, and Fraud are defined in the textbook Glossary as follows:
Risk—The possibility that an event will occur and adversely affect the achievement of objectives. Inherent Risk—The combination of internal and external risk factors in their pure, uncontrolled state, or the gross risk that exists, assuming there are no internal controls in place. Fraud—Any illegal act characterized by deceit, concealment, or violation of trust. These acts are not dependent upon the threat of violence or physical force. Frauds are perpetrated by parties and organizations to obtain money, property, or services; to avoid payment or loss of services; or to secure personal or business advantage. IT Fraud and Malicious Acts Risk is defined in this chapter as follows:
IT Fraud and Malicious Acts Risk—Theft of IT resources, intentional misuse of IT resources, or intentional distortion or destruction of information may result in financial losses and/or misstated information that decision-makers rely upon. Causes of fraud and malicious acts risk include, for example, disgruntled employees and hackers intent on harming the organization for personal gain. With the definitions presented above as the backdrop, identify six specific inherent IT fraud and malicious acts risk events that could occur and cause harm to an organization.