Menu

[solved]-Well Ipremier Company Perform Seventy Five Minute Attack Would Calculate Total Cost Attack Q39007816

HARVARD BUSINESS SCHOOL 9-601-114 E_: TULS 25. 2007 ROBERT D. AUSTIN The iPremier Company (A): Denial of Service Attack Janua601-114 The i Premier Company (A): Denial of Service Allack Its our website, sir. Its locked up. Ive tried accessing it fThe iPremier Company (A): Denial of Service Allack 601-114 New York. As that memory passed another emerged, this one from an601-114 The iPremier Company (A): Denial of Service Allack company, there was a strong orientation toward doing whatever itThe iPremier Company (A): Denial of Service Allack 601-114 He did, but he doesnt know anything. Whats going on? I dont601-114 The iPremier Company (A): Denial of Service Allack Weve got a binder, said Ripley. Ive got a copy with me. KeepThe iPremier Company (A): Denial of Service Allack 601-114 5:27 AM He had just taken his first sip of hot coffee when he gotThe iPremier Company (A): Denial of Service Allack 601-114 Sit down when you get a chance and write me an e-mail that summarThe iPremier Company (A): Denial of Service Allack 601-114 Sit down when you get a chance and write me an e-mail that summar601-114 The iPremier Company (A): Denial of Service Allack Exhibit 1 The iPremier Companys Technical Architecture Qdata Faci

  1. How well did the iPremier Company perform during theseventy-five-minute attack? How would you calculate the total costof such an attack?
  2. The iPremier Company CEO, Jack Samuelson, had already expressedto Bob Turley his concern that the company might eventually sufferfrom a “deficit in operating procedures.” Were the company’soperating procedures deficient in responding to this attack? Whatadditional procedures might have been in place to better handle theattack?
  3. Now that the attack has ended, what can the iPremier Company doto manage risk better and be prepared for another suchattack?  What actions would you recommend?
  4. In the aftermath of the attack, what would you be worriedabout?
  5. If you were Bob Turley or any other leader in company, whatmight you have done differently during the attack? What is thiscase really about?

HARVARD BUSINESS SCHOOL 9-601-114 E_: TULS 25. 2007 ROBERT D. AUSTIN The iPremier Company (A): Denial of Service Attack January 12, 2007, 4:31 AM Somewhere a telephone was chirping. Bob Turley, CIO of thc i Premier Company, turned beneath the bed sheets, wishing the suund wuld y away. Lifting his head, he tried to make sense of huis surroundings. Where was he? The Westin in limes Square. New York City. That’s right. He was there to meet with Wall Street analysis. He’d gollen in lale. By the lime his head had hil the pillow it was nearly 1:30 AM. Now the digital display on the nearby clock made no sense. Who would be calling at this hour? Why would the hotel operator put a call thirugh? He reached tor the phone at his bextside and held it to his ear. Dial tune. Huh? The chirping was coming from his cell phone. Hanging up the hotel phone, he staggered out of bed, located the cell phone and ſlipped it open. “This is Bob Turley.” “Mr. Turley?” There was panic in the voice at the other end of the line. “I’m surry to wake you, Joanne told me to call you.” “Who is this?” “It’s Leon. Leon Ledbetter. I’m in Ops. We met last week. I’m new. I mean, I was new, last month.” “Why are you calling me at 4:30 in the morning, Leon?” ” “I’m really sorry about that Mr. Turley, but Joanne said “No, I mean what’s wrong? Why are you calling?” Prall Raleit TAussin, Dr. Tanyak, Cie Teilvolyy O l, Mum’s Schwalbe Uriversity of Texas at Austili, a Ala Mlav, Chiel Scents. Novell Service Provider Netwo:k prepared this case. HDS Cases ale levelopei solely as the basis for des disc.Es.On. Cases a nol intended. Te as e.voseren.. SCLLC9 of primay dala ruslea.lons of effective or uneleve nanagemell. The sul leser bed in this case is Lase: calea 2000.luts of deal of service attacks Jitected agains: several companies ng 2000 a 2001. CC L DNE.res. piccuc/service olle.66 and the names of all individuels in the case Are Licconehoweve. Any recercance lo comane, otterige. Or ir dviduals is accidental Co wright 2001-2005. 2005. 2017 President and follow at Harvard College ‘Ic order copies or permission to produce meetLLS, 1 800 545785, wrile LV Uusitis Schico, P lishing los.cn, VA:2:01. golo //www.xp hervard. No put of this [:lit m u nd, steveyt in i trieva YTI, ISIS la naster transmitted in Tyform. hyny TICS Clercruir. mecanici, phoocopying, record.g. Or cherwise without mission of Heverd Business School 601-114 The i Premier Company (A): Denial of Service Allack “It’s our website, sir. It’s locked up. I’ve tried accessing it from three different computers and nothing’s happening. Our customers can’t access it either; the help desk is getting calls.” “What’s causing it?” “Joanne thinks if we could only well, soineone might have lacked us. Someone else might be controlling our site. Support has been getting these e-mails we thought it was just the web server, but I can’t access anything over there. Joanne is on her way to the colo. She said to call you. These weird e-mails, they’re coining in alvut one per second.” “What do the e-mails say?” “They say ‘ha.”” “Ha?” “Yes, sir. Each one of thein has one word in the subject line, ‘la’ It’s like ‘ha, la, ha, ha.’ Coining from an anonymous source. That’s why we’re thinking-” “When you say they might have hacked us could they be stealing customer information? Credit cards?” “Well, I guess no firewall?—Joanne says—actually we’re using a firewall service we purchase from the colo, so—” “Can you call someone at the colo? We pay for monitoring 24/7, don’t we?” “Joanne is calling them. I’m pretty sure. Is there anything you want me to do?” “Have we set our emergency procedures in motion? ” “loanne says we have a binder, but I can’t find it. I don’t think I’ve ever seen it. I’m new “Yes, I got that. Docs Joanne have her cell?” “Yes sir, she’s on her way to the colo. I just talked to her.” “Call me back if anything else happens.” “Yes sir.” Turley stood up, realizing only then that he had been sitting on the floor. His eyes were bleary but adrenaline was low cranking in huis bloodstreain. Steadying hiinself against a chair, he felt a wave of nausea. This was no way to wake up. He made his way to the bathroom and splashed water on his face. This trip to New York was an important assignment for someone who had been with the company such a short time. It demonstrated the confidence CEO Jack Samuelson had in him as the new CIO. For a moment Turley savored the memory of the meeting in which Samuelson had told him he would be the one to go to 1 “Cola” is shon for “colocation facility,” where Internet companies often house their vital computing hardware Colocation facilities are sometimes called “Internet Data Centers” or simply “hosting facilities.” They provide flour space, redundant power supplios, high speed connectivity to the Internet, and a variety of other services to their customers, A lirewall” is a combination hardware/software platform that is designed to protect a local network and the computers that reside on it against unauthorized access The iPremier Company (A): Denial of Service Allack 601-114 New York. As that memory passed another emerged, this one from an earlier session with the CEO, Samuelson was worried that the company miglit eventually suffer froin “a deficit in operating procedures.” “Make it one of your top priorities,” he had said. “We need to run things professionally, I’ve hired you to take us to the next level.” Looking himself over in the mirror, seeing his hair tussled and face wet, Turley lodged a protest with no one in particular: “I’ve barely been here three months.” The iPremier Company Founded in 1996 by two students at Swarthmore College, the iPremier Company had evolved into one of the few success stories of web-based commerce. From its humble beginnings, it had risen to become one of the top two retail businesses selling luxury, rare, and vintage goods on the web. Based in Seattle, Washington, the firm had grown and held off incursions into its space from a number of well-funded challengers. For the fiscal year 2006, profits were $2.1 million on sales of $32 million. Sales had grown at more than 20% annually for the last three years, and profits, though thin somewhat variable, had an overall favorable trend. Immediately following its Initial Public Offering in late 1998, the company’s stock price had nearly tripled. It had continued up from there amid the euphoria of the 1999 markets, eventually tripling again. A follow on offering had left the company in a strong cash position. During the NASDAQ bloodbath of 2000, the stock had fallen dramatically but had eventually stabilized and even climbed again, although not to pre-2000 levels. Since then, the company had held its own, recovering from a difficult period by streamlining and focusing its business to achieve profitability when others couldn’t. Eventually the company began to grow again, though more slowly than before. In the treacherous business-to-consumer (B2C) segment, i Premier was one of a very few survivors. Most of the company’s products were priced between fifty and a few hundred dollars, but there were a small number of items priced in the thousands of dollars. Customers paid for items online using their credit cards. The company liad flexible return policies, which were intended to allow customers to thoroughly examine products before deciding whether to keep them. The iPremier customer base was high end so much so that credit limits on charge cards were rarely an issue, even for the highest-priced products. Management and Culture The management team at iPremier was a mix of talented young people who had been with the company for a long time and more experienced managers who had been gradually hired as the firm grew. Recruitment had focused on well-educated technical and business professionals with reputations for high performance. Getting hired into a senior management position required excelling in an intense series of three-on-one interviews. The CEO interviewed every prospective manager at the director level and above. The reward, for those who made the grade, was base compensation above the average of managers at similar firms, and variable compensation that could be a significant multiple of the base. All employees were subject to quarterly performance reviews that were tied directly to their compensation. Unsuccessful managers did not last long Most managers at iPremier described the environment as “intense.” The company stated its governing values in terms of “discipline, professionalism, commitment to delivering results, and partnership for achieving profits.” Unlike many Internet companics, iPremier had taken a balanced approach to growth and profitability, although growth had tended to rule the day. Throughout the 601-114 The iPremier Company (A): Denial of Service Allack company, there was a strong orientation toward doing “whatever it takes” to get projects done on schedule, especially when it came to systein features that would benefit customers. The software developinent teamll was proud of its record of consistently launching new features and prograins a few months ahead of a major competitor, MarketTop. Value statements aside, it was well understood by senior managers that their compensation and future prospects with the company depended on executing to plan Managers pursued “the numbery with obsessive zeal. Technical Architecture The company had historically tended to outsource management of its technical architecture and had a long-standing relationship with Qdata, a coinpany that hosted most of iPremier’s computer equipment and provided connectivity to the Internet. Qdata was an early entrant into the Internet hosting and colocation business, but it had been battered by the contractic and lost any prospect of market leadership. The facility was close to the corporate offices of iPremier; some felt there was little else to recommend it. Qdata was a steady provider of basic floor space, power, connectivity, environmental control, and physical security, and it offered some higher level “management services, such as monitoring of websites for customers at its network operations Center (NOC) and some Internet security services (such as the firewall service used by iPremier). But Qdata had not been quick to invest in advanced technology and had experienced difficulty in retaining staff. The iPremier Company had a long standing initiative aimed at eventually moving its coinputing to another facility, but several factors had conspired to keep this from happening. First, and most significant, iPremier had been very busy growing, protecting its profits, and delivering new features to benefit Customers, hence the move to a better facility had never quite made it to the top of the priority list. Second, the cost of more modern facilities was considerably higher—wo to three times as expensive on a per square foot basis. The computers at iPremier occupied a great deal of space, so a move to another facility would have increased costs enough to affect the slender but increasing profit trend the company was eager to maintain. Third, there was a perception—not necessarily supported by fact, according to the operations staff that a move might risk service interruption to customers. The operations staff maintained that with appropriate modernization of the computing infrastructure, growth could be accomplished by adding installations in other facilities, rather than by expanding floor space in the existing facility. The work of planning how this might be carried out had never been done, however. Tinally, one of the founders of iPremier felt a personal commitment to the owners of Qdata because the latter company had been willing to renegotiate their contract at a particularly difficult time in iPremier’s early days. Exhibit 1 provides a diagram of iPremier’s technical architecture 4:39 AM Turley situated himself at the desk in luis hotel room and began paying through the digital phonebook on his cell phone. Before he could find the number for Joanne Ripley—his technical operations team leader—the phone began to chirp. The incoming call was from Ripley, “Hello, Joanne. How are you this morning?” A cautious laugh came from the other end of the circuit. “About the same as you, I’m guessing. I assume Leon reached you.” The iPremier Company (A): Denial of Service Allack 601-114 “He did, but he doesn’t know anything. What’s going on?” “I don’t know much either, yet. I’m in the car, on my way to the colo.” “Can’t you do something from home?” “Well-no. Leon can’t access any of the boxes behind the firewall via the line at the office, so something is screwy with our connectivity to the colo. Sounds like a problem outside the perimeter of our architecture. I called Qdata, but they assured me there’s no problem with connectivity into or out of the building. They’re looking into it further, but their night shift is on duty. I don’t know where they get those bozos. T haven’t talked to anyone yet who knows what he’s doing.’ “How long till you get there?” “I’m driving fast and running red lights. I ought to be there in five minutes.” “Ilow long after that until we are back up and running?” “That depends on what’s wrong. I’ll try restarting the web server as soon as I get there, but if somconc has hacked uis, or if there’s some kind of attack going on, that might not do it. Did Lcon tell you about the e-mails?” “The ‘la, ha’ e inails? Yeah. Makes it sound like something deliberate.” “I’d have to agree with that.” “No chance it’s a simple DoS attack?” “I doubt it’s a simple DoS attack; we’ve got software that’s deals with those.” “Can we track the e-mails?” “Vot soon enough. They’re coming through an anonymizer that’s probably in Europe or Asia. If we’re lucky we’ll find out sometime in the next 18 months who sent them. Then we’ll discover they’re originating from some DSL-connected FC in Podunk, Idaho, and that the Joe Schmo who owns it has no idea that it’s been compromised by hackers.” “Any chance they’re stealing credit cards?” “There’s really no way of knowing without more info.” “Should we pull the plug? Physically disconnect the communications lines?” “We could. But if we start pulling cables out of the wall it may take us a while to put things back together. Right now most of our customers are asleep.” “Joannc, don’t we have cmergency procedures for times like this, a binder or something at least? I don’t think I’ve seen it but it comes up when people inention our business continuity plan. When I mentioned it to Leon, he seemed to have no idea what I was talking about.” The hosting facility where the procluction computer equipment was housed was wonected to the iPrenier Company’s offices via a leased communication line Tluis lite woull orclinarily peruut people at the office to connect to production computers without traversing the public Internet 601-114 The iPremier Company (A): Denial of Service Allack “We’ve got a binder,” said Ripley. “I’ve got a copy with me. Keep it in my car. There’s one at the office too, even if Leon can’t find it. But to be honest, well it’s out of date. Lots of people on the call lists don’t work here anymore. I don’t think we can trust the cell phone nunbers and I know some of the technology has changed since it was written. We’ve talked about practicing incident response but we’ve never made time for it.” “Hmm. So what’s the plan when you reach the colo?” “Whoops.” There was a pause while Ripley negotiated a traffic obstacle. “Sorry. Let me restart the web server and see what happens. Maybe we can get out of this without too much customer impact.” Turley thought about it for a moment. “Okay. But if you see something that makes you think credit cards are being stolen, I want to know that immediately. We may have to take drastic action.” “Understood. I’ll call you back as soon as I know anything.” “Good. One more thing: Who else knows this is going on?” “I haven’t called anyone else. Leon might have. I’ll call him and call you right back.” “Thanks.” Turley flipped his cell closed then picked up the hotel phone. After a series of transfers, he found someone who would bring coffee to his room, despite the odd hour. Never before had he so desperately wanted coffee. Just as he replaced the hotel phone his cell rang again. “Damn.” It was Warren Spangler, VP of business development. Turley remembered vaguely that Leon Ledbetter had come into the organization via a recominendation by Spangler. They were old high school buddies or something, Lecibetter had almost certainly called Spangler, “Hi, Warren,” said Turley, flipping the phone open. “Hi, Bob. I hear we’ve got some kind of incident going on. What’s the story?” “Something’s definitely going on, but we’re not sure what yet. We’re trying to minimize customer impact. Fortunately for us it’s the middle of the night.” “Wow. So is it just a technical problem or is somebody actually doing it to us?” Turley was eager to call the chief technology Officer (CIO), so he didn’t really have time for thuis discussion. But he didn’t want to be abrupt. He was still getting to know his colleagues. “We don’t know. Look, I’ve got to- “Leon said something about e-mails” “Yes, there are suspicious e-mails coming in so it could be someone doing it.” “Oh, man. I bet the stock takes a hit tomorrow. Just when I was going to exercise some options. Shouldn’t we call the police?” “Sure, why don’t you see what you can do there, that’d be a big help. Look, I’ve got to—” We were unable to transcribe this imageWe were unable to transcribe this imageThe iPremier Company (A): Denial of Service Allack 601-114 5:27 AM He had just taken his first sip of hot coffee when he got the call he’d been dreading. It was from Jack Samuelson, the CEO. “Hi Jack.” “Bob. Exciting morning?” More than I like it.” “Are we working a plan?” “Yes, sir. Not everything is going according to plan, but we are working a plan.” “Is there anything I can do?” “Actually, Jack, there is. Call someone sertior at Qdata and tell them we need their full and immediate support. They’re giving Joanne the runaround about access to their VOC.” “I’ll do that right now, Bob.” “Thanks, Jack.” “Bob, the stock is probably going to be impacted and we’ll have to put a solid PR face on this, but that’s not your concern right now. You focus on getting us back up and running. Understand?” “I do.” The call ended. It had gone better than Turley had feared. He avoided the temptation to analyze Sannuelson’s every word for clues to his innerinost thouglits. Instead, he dialed Joane, “Hi, Bob,” she said, sounding mildly cheerful. “They let me in. I’m sitting in front of the console right now. It looks like a SYN flood from multiple sites directed at the routers that runs our firewall service. So it is DoS attack, just not a simple one. By the way, this is not a proper firewall, Bob; we need to work on something better.” “Fine, but what can we do right now?” “Well, looks like the attack is coming from about 30 sites. If the guys here will let me, I’m going to start shutting down traffic from thosc IP addresses.” “Samuelson is waking up the senior guys at Qdata. If the night shift gives you any trouble, tell then it’s going to be raining executives really soon.” Each “conversation” with a web survur begins with a sequence of ‘handshake interactions. The initiating computer first sends a “SYNCHRONIZE” or “SYN.” The contacted web server responds with a “SYNCHRONIZE ACKNOWLEDGE” or “SYN-ACK.” The initiating computer then completes the handshake with an “ACKNOWLEDGE” or “ACK.” A “SYN flood” is an attack on a web server intended to make it think a very large number of conversations” are being initiated in rapid Succession Becalise cach interaction looks like real traffic to the website, the web server expends resources dealing with each one. By flooding the site, an attacker can effectively paralyze the web server by trying to start too many conversations with it. As the name suggests a “router” is a hardware platform that routes traffic across internal networks and the Internet. 6 An “IP address” corresponds to a particular machine located somewhere on the Internet, We were unable to transcribe this imageThe iPremier Company (A): Denial of Service Allack 601-114 “Sit down when you get a chance and write me an e-mail that summarizes what you think we should do. Tell me how whatever you recommend will impact on customers, if at all. I’ve got to figure out what to tell Samuelson.” The iPremier Company (A): Denial of Service Allack 601-114 “Sit down when you get a chance and write me an e-mail that summarizes what you think we should do. Tell me how whatever you recommend will impact on customers, if at all. I’ve got to figure out what to tell Samuelson.” 601-114 The iPremier Company (A): Denial of Service Allack Exhibit 1 The iPremier Company’s Technical Architecture Qdata Facility Os First Ethernet Switch 7 e Router-Cust A DNS Servers PY Cus: Router-Cust B Router Cust… Internet Router Network Management – raris Company iPremier Co Cage Firewall Web Accelerator Router to HO Ethernet Switches Web Server Cluster SMTP/POP Server Network Management Database Server DIAGRAN SIMPLIFIED FOR ILLUSTRATION PURPOSE Source: Casewriter. Show transcribed image text HARVARD BUSINESS SCHOOL 9-601-114 E_: TULS 25. 2007 ROBERT D. AUSTIN The iPremier Company (A): Denial of Service Attack January 12, 2007, 4:31 AM Somewhere a telephone was chirping. Bob Turley, CIO of thc i Premier Company, turned beneath the bed sheets, wishing the suund wuld y away. Lifting his head, he tried to make sense of huis surroundings. Where was he? The Westin in limes Square. New York City. That’s right. He was there to meet with Wall Street analysis. He’d gollen in lale. By the lime his head had hil the pillow it was nearly 1:30 AM. Now the digital display on the nearby clock made no sense. Who would be calling at this hour? Why would the hotel operator put a call thirugh? He reached tor the phone at his bextside and held it to his ear. Dial tune. Huh? The chirping was coming from his cell phone. Hanging up the hotel phone, he staggered out of bed, located the cell phone and ſlipped it open. “This is Bob Turley.” “Mr. Turley?” There was panic in the voice at the other end of the line. “I’m surry to wake you, Joanne told me to call you.” “Who is this?” “It’s Leon. Leon Ledbetter. I’m in Ops. We met last week. I’m new. I mean, I was new, last month.” “Why are you calling me at 4:30 in the morning, Leon?” ” “I’m really sorry about that Mr. Turley, but Joanne said “No, I mean what’s wrong? Why are you calling?” Prall Raleit TAussin, Dr. Tanyak, Cie Teilvolyy O l, Mum’s Schwalbe Uriversity of Texas at Austili, a Ala Mlav, Chiel Scents. Novell Service Provider Netwo:k prepared this case. HDS Cases ale levelopei solely as the basis for des disc.Es.On. Cases a nol intended. Te as e.voseren.. SCLLC9 of primay dala ruslea.lons of effective or uneleve nanagemell. The sul leser bed in this case is Lase: calea 2000.luts of deal of service attacks Jitected agains: several companies ng 2000 a 2001. CC L DNE.res. piccuc/service olle.66 and the names of all individuels in the case Are Licconehoweve. Any recercance lo comane, otterige. Or ir dviduals is accidental Co wright 2001-2005. 2005. 2017 President and follow at Harvard College ‘Ic order copies or permission to produce meetLLS, 1 800 545785, wrile LV Uusitis Schico, P lishing los.cn, VA:2:01. golo //www.xp hervard. No put of this [:lit m u nd, steveyt in i trieva YTI, ISIS la naster transmitted in Tyform. hyny TICS Clercruir. mecanici, phoocopying, record.g. Or cherwise without mission of Heverd Business School
601-114 The i Premier Company (A): Denial of Service Allack “It’s our website, sir. It’s locked up. I’ve tried accessing it from three different computers and nothing’s happening. Our customers can’t access it either; the help desk is getting calls.” “What’s causing it?” “Joanne thinks if we could only well, soineone might have lacked us. Someone else might be controlling our site. Support has been getting these e-mails we thought it was just the web server, but I can’t access anything over there. Joanne is on her way to the colo. She said to call you. These weird e-mails, they’re coining in alvut one per second.” “What do the e-mails say?” “They say ‘ha.”” “Ha?” “Yes, sir. Each one of thein has one word in the subject line, ‘la’ It’s like ‘ha, la, ha, ha.’ Coining from an anonymous source. That’s why we’re thinking-” “When you say they might have hacked us could they be stealing customer information? Credit cards?” “Well, I guess no firewall?—Joanne says—actually we’re using a firewall service we purchase from the colo, so—” “Can you call someone at the colo? We pay for monitoring 24/7, don’t we?” “Joanne is calling them. I’m pretty sure. Is there anything you want me to do?” “Have we set our emergency procedures in motion? ” “loanne says we have a binder, but I can’t find it. I don’t think I’ve ever seen it. I’m new “Yes, I got that. Docs Joanne have her cell?” “Yes sir, she’s on her way to the colo. I just talked to her.” “Call me back if anything else happens.” “Yes sir.” Turley stood up, realizing only then that he had been sitting on the floor. His eyes were bleary but adrenaline was low cranking in huis bloodstreain. Steadying hiinself against a chair, he felt a wave of nausea. This was no way to wake up. He made his way to the bathroom and splashed water on his face. This trip to New York was an important assignment for someone who had been with the company such a short time. It demonstrated the confidence CEO Jack Samuelson had in him as the new CIO. For a moment Turley savored the memory of the meeting in which Samuelson had told him he would be the one to go to 1 “Cola” is shon for “colocation facility,” where Internet companies often house their vital computing hardware Colocation facilities are sometimes called “Internet Data Centers” or simply “hosting facilities.” They provide flour space, redundant power supplios, high speed connectivity to the Internet, and a variety of other services to their customers, A lirewall” is a combination hardware/software platform that is designed to protect a local network and the computers that reside on it against unauthorized access
The iPremier Company (A): Denial of Service Allack 601-114 New York. As that memory passed another emerged, this one from an earlier session with the CEO, Samuelson was worried that the company miglit eventually suffer froin “a deficit in operating procedures.” “Make it one of your top priorities,” he had said. “We need to run things professionally, I’ve hired you to take us to the next level.” Looking himself over in the mirror, seeing his hair tussled and face wet, Turley lodged a protest with no one in particular: “I’ve barely been here three months.” The iPremier Company Founded in 1996 by two students at Swarthmore College, the iPremier Company had evolved into one of the few success stories of web-based commerce. From its humble beginnings, it had risen to become one of the top two retail businesses selling luxury, rare, and vintage goods on the web. Based in Seattle, Washington, the firm had grown and held off incursions into its space from a number of well-funded challengers. For the fiscal year 2006, profits were $2.1 million on sales of $32 million. Sales had grown at more than 20% annually for the last three years, and profits, though thin somewhat variable, had an overall favorable trend. Immediately following its Initial Public Offering in late 1998, the company’s stock price had nearly tripled. It had continued up from there amid the euphoria of the 1999 markets, eventually tripling again. A follow on offering had left the company in a strong cash position. During the NASDAQ bloodbath of 2000, the stock had fallen dramatically but had eventually stabilized and even climbed again, although not to pre-2000 levels. Since then, the company had held its own, recovering from a difficult period by streamlining and focusing its business to achieve profitability when others couldn’t. Eventually the company began to grow again, though more slowly than before. In the treacherous business-to-consumer (B2C) segment, i Premier was one of a very few survivors. Most of the company’s products were priced between fifty and a few hundred dollars,

Expert Answer

. . .

OR


Leave a Reply

Your email address will not be published. Required fields are marked *

See what happens after you have accessed solutions.

We are an established writing agency offering a variety of homework related solutions.

 

Place New Order Now

Once your purchase clears after clicking the purchase button, you will get the download link on the confirmation page and its mirror on your email for convenience.