A small company use of online banking and automated transfers. The company Employees usually logged in with both a company and user-specific ID and password. Two challenge questions had to be answered for transactions over $5,000. The accountant was notified that online transfer of $20,000 was initiated by an unknown source. He contacted the bank and identified that in just two weeks ago a cybercriminal had made four transfers from the company bank accounts, totaling $100,000. After investigation, they found that one of the employees had opened an email from what he thought was one of their suppliers but was instead a malicious email laced with malware from an imposter account. Imagine that you are the security administrator of such company and answer the following questions in detail.

a. Explain in detail how that attack happened by illustrated the type of attack may the hacker was used.

b. What are some steps you think the firm could have taken to prevent this incident? Mention at least 4 steps.

c. According to your opinion, which kind of procedures, software, and hardware needed to help in detecting and preventing such crime. Mention at least 4 steps