Cybercrime 

The definition of cybercrime is still evolving.  Currently there is much debate among experts about what constitutes a computer-related or cybercrime. Cybercrime generally is understood to include traditional activities such as fraud, theft or forgery whenever a computer is involved. It can also include a number of new crimes like cyberstalking.  Cybercrime can also include activities not considered criminal in one jurisdiction, but punishable in another.

The top ten list of scams as recently listed in Consumer Sentinel, a database maintained by the Federal Trade Commission are:

1. Internet auction fraud
2. Internet service provider fraud
3. Fraudulent Internet web-site design/promotions (web cramming)
4. Fraud related to Internet information and adult services
5. Multi-level marketing (pyramid sales) fraud
6. Business opportunities and work-at-home fraud
7. Investment, get-rich-quick schemes
8. Travel/holiday fraud
9. Telephone, pay-per-call solicitation frauds
10. Health-care fraud.

We cover most of the significant cybercrime issues below.

Computer Network Intrusions

One of the first problems with networks was that people can get into them from anywhere.  The popular movie "War Games" illustrated an extreme but useful example of this.  Crackers (often misnamed hackers) can break into computer systems from anywhere in the world and steal data, plant viruses, create back doors, insert Trojan Horses, or change user names and passwords.  Network intrusions are illegal, but detection and enforcement are difficult.  Current law is limited and many intrusions go undetected.  The cracker can bypass existing password protection by creating a program to capture logon IDs and passwords.

Password Sniffers

Password sniffers are programs that monitor and record the name and password of network users as they log in, jeopardizing security at a site. Whoever installs the sniffer can then impersonate an authorized user and log in to access restricted documents. Laws are not yet set up to adequately prosecute a person for impersonating another person on-line, but laws designed to prevent unauthorized access to information may be effective in apprehending crackers using sniffer programs. 

Spoofing

Spoofing is done when you disguise one computer to electronically "look" like another computer in order to gain access to a system that would normally be restricted.  

Industrial Espionage

Corporations, like governments, often spy on the enemy. The Internet and privately networked systems provide new and better opportunities for espionage.  Spies can get information about product finances, research and development, and marketing strategies.  These cyberspies rarely leave behind a trail.

Cyberfraud

Stock manipulation, pyramid schemes, fraudulent business opportunities, offshore scams, are all types of cyberfraud.  The Internet has made these all the easier with fraudulent web auctions, internet services, merchandise, pyramid and multilevel marketing schemes, business opportunities, work-at-home schemes, credit card issuing, sweepstakes, and book sales leading the way.

Cyberstalking

Cyberstalking refers to sending harassing or threatening E-mail to others and includes e-mail threats, e-mail bombs, "nuking", sending unwanted message or files, inappropriate requests in chat rooms, forged e-mail source addresses, and inappropriate postings on message boards.  Cyberstalkers have been known to make death threats, to publicize the victim's home address and telephone number, and worse.  It has been estimated that approximately 200,000 people stalk someone each year. 

Cyberstalkers usually target women and children who are inexperienced in on-line activities and the rules of netiquette.  These stalkers feel empowered by their perceived anonymity.  Stalkers generally lose interest if they don't get the reactions they seek. 

In general, it is easy to avoid cyberstalking - you just need to  avoid appearing to be an inexperienced young girl.  Don't accept files from or give any personal information to strangers.

Software Piracy

According to estimates by the U.S. Software and Information Industry Association, as much as $7.5 billion of American software may be illegally copied and distributed annually worldwide. Piracy is easy, and few pirates are caught. This issue is thoroughly covered on the What are Warez? page.

Cyberterrorism

Cyberterrorism is the use of computers and programs in attacks against others.  Cyberterrorism is thoroughly covered on our Infowar page.

Computer Sabotage

The use of the Internet to hinder the normal functioning of a computer system through the introduction of worms, viruses, or logic bombs is referred to as computer sabotage. Computer sabotage can be used to gain economic advantage over a competitor, to promote the illegal activities of terrorists, or to steal data or programs for extortion purposes.

Mail bombs

Software can be written that will instruct a computer to do almost anything, now terrorism has hit the Internet in the form of mail bombings.  By instructing a computer to repeatedly send electronic mail (email) to a specified person's email address, the cybercriminal can overwhelm the recipient's personal account and potentially shut down entire systems. This may or may not be illegal, but it is certainly disruptive. 

Credit card fraud

Millions of dollars may be lost annually by consumers who have credit card and calling card numbers stolen from on-line databases.  Security measures are improving, and traditional methods of law enforcement seem to be sufficient for prosecuting the thieves of such information.  Bulletin boards and other on-line services are frequent targets for hackers who want to access large databases of credit card information.  Such attacks usually result in the implementation of stronger security systems.

Identity Theft

Identity theft is really identity fraud.  This theft of one's identity occurs a criminal uses someone else's identity for their own illegal purposes.  Examples include fraudulently obtaining credit, stealing money from the victim’s bank accounts, using the victim's credit card number, establishing accounts with utility companies, renting an apartment, or even filing bankruptcy using the victim’s name. The cyberimpersonator can steal unlimited funds in the victim’s name without the victim even knowing about it for months -- even years.  

Conclusion

Cybercrime is a rapidly growing and evolving area.  Computer experts will be constantly challenged to keep up with cybercrime techniques and tools.  Business continuity depends on strong computer security and disaster recovery operations.  Do you best to stay current on these issues.  The links below offer some excellent resources for this purpose.

Related Pages
What are Warez?  
InfoWar - Information Warfare

Cybercrime Resources

The FBI and the National White Collar Crime Center are dedicated to detecting and preventing all types of computer-related crimes.

Computer Crime and Intellectual Property Section (CCIPS) in the Criminal Division of the U.S. Department of Justice.

National Cybercrime Training Partnership - (NCTP) Leads the Training Community in Developing a New Paradigm for Training Law Enforcement in Electronic and High-Technology Crime.

Cybercrime on the Internet - comprehensive coverage of this issue

Cybercrime coverage from Techtv.com

CyberCrime - Justice, Law and Society - a great collection of links from InfoSysSec

Articles

Spies in the Digital Age-Noted espionage expert H. Keith Melton explains how computers have changed the rules of the game

What Is Computer and Telecommunication Crime?-from the Royal Canadian Mounted Police

Who Should Fight Cybercrime? - from Wired, who should it be? Politicians generally don't have the technical understanding to make the informed decisions that could become law. On the flip side: Engineers are neither politicians nor police.

Internet Research Resources

411 Listings -  search White Pages

Search-Top 10 Computer Searches for Locating Missing Persons