Beruflich Dokumente
Kultur Dokumente
Unit 4- Cybercrimes
• Cybercrimes and Cybercriminals
• Reasons for Cybercrime
• Categories of Cybercrime
• Subject of Cybercrime
Classification
MIDTERM
Kaizen 2006 - 2007
Objectives
1. Define cybercrime.
2. Identify the potential cybercriminals
3. Differentiate hacking from cracking.
4.Distinguish cybercrimes from
cyberrelated crimes, cyber-
exacerbated from cyber-assisted
crimes.
Cybercrimes
Kaizen 2006 - 2007
Objectives
• 5. Identify some organized crime on the
Internet.
• 6. Determine the law enforcement techniques, and
national and international efforts in
catching cybercriminals and fighting
cybercrime.
• 7. Enumerate some tools and techniques in
combating cybercrimes.
• 8. Determine the reasons of cybercrime,
categories of cybercrime (modes and manner
of conduct), and the subject of cybercrime.
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes and
Cybercriminals
• There have been many stories in the
media about computer crime.
• Sometimes hackers have been
portrayed as “heroes”
• Perceptions about hacking and
computer crime are changing because
of increased dependency on the
Internet for our infrastructure.
Cybercrimes
Kaizen 2006 - 2007
A "Typical" Cybercriminal
• Parker (1998) believes that typical computer
hackers tend to exhibit three common traits:
– Precociousness;
– Curiosity;
– persistence.
• Many people conceive of the typical
computer hacker as someone who is a very
bright, technically sophisticated, young white
male – as portrayed in the popular movie War
Games.
Cybercrimes
Kaizen 2006 - 2007
A Typical Computer
Criminal (continued)
• Parker suggests that we carefully distinguish
between hackers, as nonprofessional or "am-
ateur" criminals, and professional criminals.
• He points out that stereotypical computer
hackers, unlike most professional criminals,
are not generally motivated by greed.
• He also notes that hackers seem to enjoy the
"sport of joyriding," another characteristic that
allegedly distinguishes stereotypical hackers
from professional criminals.
Cybercrimes
Kaizen 2006 - 2007
A Typical Computer
Criminal (continued)
• Many computer criminals have been
company employees, who were formerly loyal
and trustworthy and who did not necessarily
possess great computer expertise.
• Some employees have been tempted by
flaws in computer systems.
• So in this case, opportunity more than
anything else seems to have been the root
cause of many individuals who have been
involved in computer crimes.
Cybercrimes
Kaizen 2006 - 2007
A Typical Computer
Criminal (continued)
• If Forester and Morrison (1994) are
correct, at least three categories for
typical computer criminals are needed:
• 1. (amateur) teenage hackers;
• 2. professional criminals;
• 3. (once) loyal employees who are
unable to resist a criminal opportunity
presented by cyber-technology.
Cybercrimes
Kaizen 2006 - 2007
Some Notorious
Cybercriminals
• Kevin Metnick: “Public Cyber-enemy No. 1”;
• Robert Morris and the "Internet Worm";
• Onel de Guzman and the ILOVEYOU Virus;
• "Mafia Boy" and the Cyber-Attacks on E-
commerce Sites;
• "Dimitri" and Microsoft Corporation;
• "Curador" and Identity Theft;
• Notorious Hacker Cults;
– Chaos" ;
– The Legion of Doom“;
– The Cult of the Dead Cow."
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes
Kaizen 2006 - 2007
Defining Cybercrime
• When is a crime a computer crime?
• The problem of criteria.
• Are all crimes involving the use or
presence of a computer necessarily
computer crimes?
• Gotterbarn asks is a murder committed
with a surgeon’s scalpel is an issue for
medical ethics or just an ordinary
crime.
Cybercrimes
Kaizen 2006 - 2007
Defining Cybercrime
(continued)
• If Gotterbarn is correct, we can ask whether
having a separate category of cybercrime is
necessary or even useful.
• Some crimes have involved technologies
other than computers, but we do not have
separate categories of crime for them?
– For example, people steal televisions; but we don't
have a category of television crime.
– People also steal automobiles but we don't have a
category of automobile crime.
Cybercrimes
Kaizen 2006 - 2007
Preliminary Definition of a
Computer Crime
• Forester and Morrison (1994) defined
a computer crime as:
– a criminal act in which a computer is used
as the principal tool. [Italics added]
• This definition rules out a computer
crimes the crimes committed in the
three scenarios.
• Forester and Morrison's definition of
computer crime might seem plausible.
• But is it adequate?
Cybercrimes
Kaizen 2006 - 2007
Preliminary Definition of
Computer Crime (continued)
• Consider the following scenario:
• Scenario 4: Lee uses a computer to file a
fraudulent income-tax return.
• Arguably, a computer is the principal tool
used by Lee to carry out the criminal act.
• Has Lee has committed a computer crime?
• But Lee could have committed the same
crime by manually filling out a standard
(hardcopy) version of the income-tax forms
by using a pencil or pen.
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes
Kaizen 2006 - 2007
Genuine Cybercrimes
Cybercrimes
Kaizen 2006 - 2007
Three Categories of
Cybercrime
1. Cyberpiracy - using cyber-technology in unauthorized
ways to:
a. reproduce copies of proprietary software and
proprietary information, or
b. distribute proprietary information (in digital form) across
a computer network.
2. Cybertrespass - using cyber-technology to gain or to
exceed unauthorized access to:
a. an individual's or an organization's computer system, or
b. a password-protected Web site.
3. Cybervandalism - using cyber-technology to unleash one
or more programs that:
a. disrupt the transmission of electronic information across
one or more computer networks, including the Internet, or
b. destroy data resident in a computer or damage a
computer system's resources, or both.
Cybercrimes
Kaizen 2006 - 2007
Categorizing specific
Cybercrimes
• Crimes involving the distribution of
proprietary MP3 files would come under the
category of cyberpiracy (category i).
• The crime involving the ILOVEYOU or "love
bug" virus clearly falls under cybervandalism
(category iii).
• The denial-of-service attacks on Web sites
falls under the heading of cybertrespass
(category ii), as well asunder category (iii); it
spans more than one cybercrime category.
Cybercrimes
Kaizen 2006 - 2007
Distinguishing Cybercrimes
from Cyber-related Crimes
• Many crimes that involve the use of cyber-
technology are not genuine cybercrimes.
• Crimes involving pedophilia, stalking, and
pornography can each be carried with or
without the use of cybertechnology.
• Hence, there is nothing about these kinds of
crimes that is unique to cybertechnology.
• These and similar crimes are better
understood as instances of cyber-related
crimes.
Cybercrimes
Kaizen 2006 - 2007
Cyber-related Crimes
• Cyber-related crimes could be further divided
into two sub-categories:
– cyber-exacerbated crimes;
– cyber-assisted crimes.
• Thus, crimes involving cybertechnology could
be classified in one of three ways:
– Cyber-specific crimes (genuine cybercrimes);
– Cyber-exacerbated crimes;
– Cyber-assisted crimes.
Cybercrimes
Kaizen 2006 - 2007
Cyber-exacerbated vs.
Cyber-assisted crimes
• Further differentiating cyber-related crimes
into two sub-categories enables us to
distinguish between a crime in which one:
– (a) uses a personal computer to file a fraudulent
income-tax return, from
– (b) crimes such as Internet pedophilia and
cyberstalking.
• In (a), a computer assists the criminal in a
way that is trivial and possibly irrelevant.
• In (b), cyber-technology plays a much more
significant (exacerbating) role.
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes
Kaizen 2006 - 2007
Law Enforcement
Techniques (continued)
• Keystroke-monitoring software can
trace the text included in electronic
messages back to the original
sequence of keys and characters
entered at a user's computer
keyboard.
• This technology is especially useful in
tracking the activities of criminals who
use encryption tools to encode their
messages.
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes
Kaizen 2006 - 2007
Industrial Espionage
• On October 2, 1996, Congress passed the
Economic Espionage Act of 1996, making it a
federal crime to profit from the
misappropriation of someone else's trade
secret.
• The Espionage Act specifically includes
language about "downloads," "uploads," "e-
mails," etc.
• Some economists worry that economic
espionage in the high-tech industry, threatens
US competition in a global market.
Cybercrimes
Kaizen 2006 - 2007
Jurisdictional Problems in
Cyberspace
• Hypothetical Scenario: Virtual Casino.
• Suppose it is legal to gamble on-line in
Nevada but not in Texas.
• A Texas resident “visits” a gambling
Web site, whose server is in Nevada.
• If the Texas resident “breaks the law,”
in which state did the crime take
place?
Cybercrimes
Kaizen 2006 - 2007
Jurisdictional Problems in
Cyberspace (continued)
• Hypothetical Scenario: International Law
Suits Involving Microsoft Corporation.
• Suppose that Microsoft Corporation develops
and releases, globally, a software product
that is defective.
• The defect causes computer systems using
it to crash under certain conditions.
• These system crashes, in turn, result both in
severe disruption and damage to system
resources.
Cybercrimes
Kaizen 2006 - 2007
Jurisdictional Problems in
Cyberspace (continued)
• What recourse should consumers and
organizations who purchase this
product have in their complaint against
Microsoft?
• In the U.S. there are strict liability laws.
• But certain disclaimers and caveats
are often issued by manufacturers to
protect themselves against litigation.
Cybercrimes
Kaizen 2006 - 2007
Microsoft Scenario
(Continued)
• Suppose that several countries in
which Microsoft has sold its new
product also have strict liability laws.
• Should Microsoft Corporation be held
legally liable in each country in which
its defective product has been sold?
• Should that corporation then be forced
to stand trial in each of these
countries?
Cybercrimes
Kaizen 2006 - 2007
Microsoft Scenario
(Continued)
• In the case involving the ILOVEYOU Virus,
several nations wanted Onel Guzman
extradited to stand trial in their countries.
• Using the same rationale, perhaps it would
follow that Microsoft should stand trial in each
country where its defective product caused
some damage.
• If Microsoft were forced to stand trial in each
of these countries, and if the corporation
were to be found guilty in these nations'
courts, the economic results for Microsoft
could be catastrophic.
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes
Kaizen 2006 - 2007
International Treaties
• The Council of Europe (COE) is currently
considering some ways for implementing an
international legal code that would apply to
members of the European Union.
• On April 27, 2000 the Council released a first
draft of an international convention of "Crime
in Cyberspace."
• In May 2000, the G8 (Group of Eight)
Countries met to discuss an international
treaty involving cybercrime.
Cybercrimes
Kaizen 2006 - 2007
International Treaties
(continued)
• The Council of Europe released its first draft
of the COE Convention on Cybercrime.
• A recent draft of that treaty addresses four
types of criminal activity in cyberspace:
– Offenses against the confidentiality, availability;
and integrity of data and computer systems;
– Computer-related offenses (such as fraud);
– Content-related offenses (such as child
pornography);
– Copyright-related offenses.
Cybercrimes
Kaizen 2006 - 2007
Biometric Technologies
• Biometrics is the biological identification of a
person, which includes eyes, voice, hand
prints, finger prints, retina patterns, and
handwritten signatures (Power, 2002).
• van der Ploeg (2001) notes that using
biometrics, one's "iris can be read" in the
same way that one's voice can be printed.“
• One's fingerprints can be "read" by a com-
puter that is "touch sensitive" and "endowed
with hearing and seeing capacities.”
Cybercrimes
Kaizen 2006 - 2007
Biometric Technologies
(continued)
• In February 2002 an iris-scanning device,
which is a type of biometric identification
scheme, was first tested at London's
Heathrow Airport.
• The scanning device captures a digital image
of one's iris, which is then stored in a
database.
• That image can then be matched against
images of individuals, such as those entering
and leaving public places such as airports.
Cybercrimes
Kaizen 2006 - 2007
Facial Recognition
Programs
• At Super Bowl XXXV in January 2001, face-
recognition technology was used by law-
enforcement agencies to scan the faces of
persons entering the football stadium.
• The scanned images were then instantly
matched against electronic images (faces) of
suspected criminals and terrorists, contained
in a central computer database.
• Initially, this was controversial; after
September 11, 2001, it was supported.
Cybercrimes
Kaizen 2006 - 2007
Reasons for
Cybercrime
• Hart in his work “ The Concept of Law”
has said ‘human beings are vulnerable
so rule of law is required to protect
them’. Applying this to the cyberspace
we may say that computers are
vulnerable so rule of law is required to
protect and safeguard them against
cyber crime. The reasons for the
vulnerability of computers may be said to
be:
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes
Kaizen 2006 - 2007
2. Easy to access
• The problem encountered in guarding a
computer system from unauthorised
access is that there is every possibility of
breach not due to human error but due
to the complex technology. By secretly
implanted logic bomb, key loggers that
can steal access codes, advanced voice
recorders; retina imagers etc. that can
fool biometric systems and bypass
firewalls can be utilized to get past many
a security system.
Cybercrimes
Kaizen 2006 - 2007
3. Complex
• The computers work on operating
systems and these operating systems
in turn are composed of millions of
codes. Human mind is fallible and it is
not possible that there might not be a
lapse at any stage. The cyber
criminals take advantage of these
lacunas and penetrate into the
computer system.
Cybercrimes
Kaizen 2006 - 2007
4.Negligence
• Negligence is very closely
connected with human conduct.
It is therefore very probable that
while protecting the computer
system there might be any
negligence, which in turn
provides a cyber criminal to gain
access and control over the
computer system.
Cybercrimes
Kaizen 2006 - 2007
5. Loss of evidence
• Loss of evidence is a very
common & obvious problem
as all the data are routinely
destroyed. Further collection
of data outside the territorial
extent also paralyses this
system of crime
investigation.
Cybercrimes
Kaizen 2006 - 2007
CATEGORIES OF
CYBERCRIME
(MODE AND MANNER IN COMMITING A CYBERCRIME)
Cybercrimes
Kaizen 2006 - 2007
Unauthorized access
• Unauthorized access to
computer systems or
networks means any person
who secures access or
attempts to secure access to
a protected system.
Cybercrimes
Kaizen 2006 - 2007
Email bombing
• Email bombing refers to
sending a large amount of
emails to the victim resulting
in the victim's email account
(in case of an individual) or
mail server (in case of a
company or an email service
provider) crashing.
Cybercrimes
Kaizen 2006 - 2007
Data diddling
• This kind of an attack
involves altering the raw
data just before it is
processed by a computer
and then changing it back
after the processing is
completed.
Cybercrimes
Kaizen 2006 - 2007
Salami attack
• This attack is used for the commission
of financial crimes. The key here is to
make the alteration so insignificant that
in a single case it would go completely
unnoticed, e.g. a bank employee inserts
a program into the bank's servers, that
deducts a small amount of money (say
Rs.5 a month) from the account of
every customer. No single account
holder will probably notice this
unauthorized debit, but the bank
employee will make a sizable amount of
money every month.
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes
Kaizen 2006 - 2007
Logic bomb
• This is event dependent program.
This implies that this program is
created to do something only when
a certain event (known as a trigger
event) occurs, e.g. some viruses
may be termed logic bombs
because they lie dormant all
through the year and become
active only on a particular date (like
the Chernobyl virus).
Cybercrimes
Kaizen 2006 - 2007
Trojan attack
• A Trojan, the program is
aptly called an unauthorized
program which functions
from inside what seems to
be an authorized program,
thereby concealing what it is
actually doing.
Cybercrimes
Kaizen 2006 - 2007
Denial of service
attack
• This involves flooding a
computer resource with
more requests than it can
handle. This causes the
resource (e.g. a web server)
to crash thereby denying
authorized users the service
offered by the resource
Cybercrimes
Kaizen 2006 - 2007
Distributed denial of
Service attack
• This is a denial of service
attack wherein the
perpetrators are many and
are geographically
widespread. It is very
difficult to control such
attacks.
Cybercrimes
Kaizen 2006 - 2007
Cyber pornography
• This would include
pornographic websites;
pornographic magazines
produced using computers (to
publish and print the material)
and the Internet (to download
and transmit pornographic
pictures, photos, writings etc.)
Cybercrimes
Kaizen 2006 - 2007
Email spoofing
• A spoofed email is one that
appears to originate from
one source but actually has
been sent from another
source.
Cybercrimes
Kaizen 2006 - 2007
Intellectual Property
Crime
• This includes software piracy,
copyright. infringement,
trademarks violations etc.
Cybercrimes
Kaizen 2006 - 2007
Cyber Stalking
• The Oxford dictionary defines
stalking as "pursuing stealthily".
Cyber stalking involves following a
person's movements across the
Internet by posting messages
(sometimes threatening) on the
bulletin boards frequented by the
victim, entering the chat-rooms
frequented by the victim,
constantly bombarding the victim
with emails etc.
Cybercrimes
Kaizen 2006 - 2007
SUBJECT OF
CYBERCRIME
CLASSIFICATION
Cybercrimes
Kaizen 2006 - 2007
• Against Individuals: –
i. Harassment via e-mails.
ii. Cyber-stalking.
iii. Dissemination of obscene material.
iv. Defamation.
v. Unauthorized control/access over
computer system.
vi. Indecent exposure
vii. Email spoofing
viii. Cheating & Fraud
Cybercrimes
Kaizen 2006 - 2007
Cybercrimes
Kaizen 2006 - 2007
• Against Organization: -
i. Unauthorized control/access
over computer system
ii. Possession of unauthorized
information.
iii. Cyber terrorism against the
government organization.
iv. Distribution of pirated
software etc.
Cybercrimes
Kaizen 2006 - 2007
PREVENTION OF
CYBER CRIME
Cybercrimes
Kaizen 2006 - 2007
Prevention of
Cybercrime
• To prevent cyber stalking avoid
disclosing any information
pertaining to oneself. This is as
good as disclosing your identity
to strangers in public place.
• Always avoid sending any
photograph online particularly to
strangers and chat friends as
there have been incidets of
misuse of the photographs.
Cybercrimes
Kaizen 2006 - 2007
Prevention of
Cybercrime
• Always use latest and up date
anti virus software to guard
against virus attacks.
• Always keep back up volumes so
that one may not suffer data loss
in case of virus contamination
• Never send your credit card
number to any site that is not
secured, to guard against frauds.
Cybercrimes
Kaizen 2006 - 2007
Prevention of
Cybercrime
• Always keep a watch on the sites
that your children are accessing to
prevent any kind of harassment or
depravation in children.
• It is better to use a security
programme that gives control over
the cookies and send information
back to the site as leaving the
cookies unguarded might prove
fatal.
Cybercrimes
Kaizen 2006 - 2007
Prevention of
Cybercrime
• Web site owners should watch
traffic and check any irregularity
on the site. Putting host-based
intrusion detection devices on
servers may do this.
• Use of firewalls may be beneficial.
• Web servers running public sites
must be physically separate
protected from internal corporate
network.
Cybercrimes
Kaizen 2006 - 2007
Summary
• Cybercrime is unlawful acts
wherein the computer is either
a tool or target or both
• Reasons for Cybercrime
• Categories of Cybercrime
• Subject of Cybercrime
Classification
• Prevention of Cybercrime
Cybercrimes
Kaizen 2006 - 2007
Evaluation
• Cybercrime is _________.
• Give the five reasons for
committing cybercrime.
• Who are the potential
cybercriminals?
• What should be done to
reduce/eliminate cybercrime?
Cybercrimes