| |
CRIME PREVENTION
Overview
| PreventStat
| Expanding the DNA Databank
| Cyber Crime Resources
FBI / Crime Commission Alliance
on Cyber Crime
What is Cyber Crime?
Cyber crime is a broad term that can be used to describe any criminal activity committed involving a computer and the internet. In a society where technology is continuously growing, this type of crime is becoming increasingly widespread. The threat posed by cyber crimes is not only limited to the use of computers. It can occur with the use of any device used to communicate with others such as mobile phones, tablets, and video game consoles. These electronic crimes most often involve hacking into private information and stealing large sums of money. Some forms of cyber crime may include: spam, harassment, drug trafficking, cyber terrorism, offensive content, blackmail, forgery, and embezzlement. Identity theft, the most frequently reported form of cyber crime, typically involves techniques known as phishing or pharming to steal personal information. Cyber criminals use these techniques to bring internet users to fake websites (that look authentic) to obtain passwords, bank account information, and other identifying information.
The targets of cyber crime can be people, property, businesses, institutions or government. It is a huge concern in the business community, with many instances occurring where millions of dollars are being stolen from large corporations. Cyber criminals are hacking into corporate websites and stealing confidential information with the intent to commit fraud. Not only is this an issue that affects corporations, but private individuals as well. In making everyday transactions such as online banking or shopping, e-mail, and social networking, an individual's information is always at risk, providing an opportunity for cyber criminals to take advantage. Since these cyber crimes are such a common occurrence, it requires everyone to use extreme caution when using computers and the internet. The internet is a tool that in many cases makes our lives easier, but it can also be used for others to take advantage. Therefore, it is tremendously important to take measures in securing one's home network, as well as for corporations and businesses to do the same.
How To Protect Yourself From Cyber Crime
There are precautions that can and should be taken by internet users in an attempt to secure any network.
Tips for Individuals
Some defense techniques to be used for securing one's home network include steps such as:
- Install a comprehensive home-based security suite
- Limit the use of the administrator account
- Use a web browser with sandboxing capabilities to help prevent invasion
- Migrate to a modern operating system and hardware platform that offers more advanced protection
Some general safety measures that all internet users should take include practices such as:
- Effective password management
- Use caution when storing personal information on websites
- Examine all links closely before navigating to a new webpage
Email best practices are important to keep in mind as well:
- Avoid clicking on links or opening attachments in emails from an unknown sender in an attempt to avert phishing scams
- Be sure to keep anti-virus software up-to-date in order to avoid the acquisition of destructive computer viruses and spyware
The National Security Agency offers more detailed information on securing a home network.
Tips for Businesses and Large Organizations
Businesses have a substantial amount of confidential information in various aspects that must be protected. It is strongly suggested that businesses invest in an automated enterprise data protection solution. Many of the most well-known and effective of these solutions include:
- Encryption
- Data Loss Prevention solutions
- Identity and access management solutions
- Endpoint security solutions and other anti-malware tools
Businesses should also keep in mind the following practices for network security:
- Portable devices (laptops, smart phones, USB memory sticks) holding company data should be encrypted, especially when extensive travel is a component
- Using an intrusion detection system to identify network breaches if they occur
- Companies should carefully evaluate the security structures of third parties before sharing confidential information
- Sufficient employee training on web-security practices should be implemented
- Proper disposing/shredding of papers and files that are no longer needed (these may contain valuable information for hackers)
- Have a plan in place for responding to a security incident if one should occur
While no one is ever completely invulnerable to cyber crime, using these precautions will certainly lessen the chances of becoming a victim.
What To Do If You Are A Victim Of Cyber Crime
If you believe a cyber crime has been committed against you, there are resources for reporting it:
- Private citizens can visit the Internet Crime Complaint Center, where a claim can be placed. Detailed information regarding the incident will need to be provided before a claim is filed and sent in for review.
- Tips about any crime, including theft of data and national security threats can be reported on the Tips and Public Leads section of the FBI website.
|
|
Cyber Crime Statistics
$6.75 million = average organizational cost of a data breach in 2009 [PI]
$4 billion = cost of online revenue loss to U.S. businesses from online fraud at its peak in 2008 [CyberSource]
35 = approximate number of complaints per hour received by the Internet Crime Complaint Center (IC3) [IC3 2010]
303,809 = total complaints received by IC3 in 2010 [IC3 2010]
40% = percentage of complaints received by IC3 referred to law enforcement agencies [IC3 2010]
67% = percentage of businesses surveyed that detected at least one cyber crime [BJS]
|
Cyber Crime Resources
Security Information For Businesses:
Security Information For the Private Citizen:
If you are a victim of a cyber crime:
|
Cyber Crime Terms
Spam: The use of an electronic messaging system to disseminate mass messages to recipients not choosing to receive them.
Botnets: A collection of private computer that have been infected with malware and are being controlled by a cyber criminal without the owner being aware. Criminals will likely use botnets to send out spam messages, spread viruses, and commit fraud.
Piracy: The theft or copying of original content without the consent of the owner who holds rights to the material and using it for marketable gain.
Encryption: The process of encoding data or confidential information so that it is not easily understood by those who are not permitted access to it.
Sandboxing: A web-browser capability used to contain malware so as to prevent it from accessing and invading the home network while using the web.
Phishing: An online scam in which an attempt is made to steal personal information by posing as a trusted institution (ie. A well-known company). This scam is usually attempted via false email
Pharming: Similar to phishing, pharming is a scam that attempts to acquire confidential information by redirecting users to bogus websites that appear to be genuine at first glance.
Spoofing: A technique used to forge the source of an email or website so that the user is unaware of the actual source of origination.
Hacking: The illegal use of computer and network resources
Malware: Short for "malicious software." It consists of viruses and spyware that become installed on your computer, phone, or mobile device without consent. Malware is often used to steal private information, send spam messages, and commit online fraud.
Spyware: A type of malware that is self-installed on a computer and can be used to collect personal information about users without their knowledge.
Virus: A program that is installed on a computer without consent and can cause a device to crash.
|
|
