As a part of a formal risk assessment of the external server in a small Web design company, you have identified the asset "integrity of the organization's Web server" and the threat "hacking and defacement of the Web server." Suggest reasonable values for the items in the risk table for this asset and threat, and provide justifications for your choices.
Apparently this is from a book which I was never told about.