1. Which preventive, detective, and/or corrective controls would best mitigate the following threats? You will have to justify your choice with appropriate evidence. a. A salesperson successfully logged into the payroll system by guessing the payroll supervisor's password. b. A criminal remotely accessed a sensitive database using the authentication credentials (user ID and strong password) of an IT manager. At the time the attack occurred, the IT manager was logged into the system at his workstation at company headquarters. c. Attackers broke into the company's information system through a wireless access point located in one of its retail stores. The wireless access point had been purchased and installed by the store manager without informing central IT or security. d. To facilitate working from home, an employee installed a modem on his office workstation. An attacker successfully penetrated the company's system by dialing into that modem. (20 Marks)