This document discusses the ethical implications and social impacts of information technology and information security. It outlines some common security threats like viruses, denial of service attacks, and phishing. It also discusses key aspects of information security like authentication, identification, privacy, integrity, and non-repudiation. Technical countermeasures for security like firewalls and encryption are described. The document also discusses ethics in information technology and raises issues around information rights, property rights, accountability, and system quality. It notes some of the social impacts of advances in information technology.