SlideShare a Scribd company logo

Chapter5.ppt

Download as PPT, PDF
A
AaishAiman

a book from sara bass

Education
1 of 27
Slides prepared by Cyndi Chie and Sarah Frye A Gift of Fire Third edition Sara Baase Chapter 5: Crime
What We Will Cover • Hacking • Identity Theft and Credit Card Fraud • Scams and Forgery • Crime Fighting Versus Privacy and Civil Liberties • Laws That Rule the Web
Hacking • Hacking – currently defined as to gain illegal or unauthorized access to a file, computer, or network • The term has changed over time • Phase 1: early 1960s to 1970s – It was a positive term – A "hacker" was a creative programmer who wrote elegant or clever code – A "hack" was an especially clever piece of code
Hacking (cont.) • Phase 2: 1970s to mid 1990s – Hacking took on negative connotations – Breaking into computers for which the hacker does not have authorized access – Still primarily individuals – Includes the spreading of computer worms and viruses and ‘phone phreaking’ – Companies began using hackers to analyze and improve security
Hacking (cont.) • Phase 3: beginning with the mid 1990s – The growth of the Web changed hacking; viruses and worms could be spread rapidly – Political hacking (Hacktivism) surfaced – Denial-of-service (DoS) attacks used to shut down Web sites – Large scale theft of personal and financial information
Hacking (cont.) Hacktivism, or Political Hacking: • Use of hacking to promote a political cause • Disagreement about whether it is a form of civil disobedience and how (whether) it should be punished • Some use the appearance of hacktivism to hide other criminal activities • How do you determine whether something is hacktivism or simple vandalism?
Hacking (cont.) The Law: Catching and Punishing Hackers: • 1986 Congress passed the Computer Fraud and Abuse Act (CFAA) – Covers government computers, financial and medical systems, and activities that involve computers in more than one state, including computers connected to the Internet – The USA Patriot Act expanded the definition of loss to include the cost of responding to an attack, assessing damage and restoring systems
Hacking (cont.) The Law: Catching and Punishing Hackers (cont.): • A variety of methods for catching hackers – Law enforcement agents read hacker newsletters and participate in chat rooms undercover – They can often track a handle by looking through newsgroup archives – Security professionals set up ‘honey pots’ which are Web sites that attract hackers, to record and study – Computer forensics is used to retrieve evidence from computers
Hacking (cont.) The Law: Catching and Punishing Hackers (cont.): • Penalties for young hackers – Many young hackers have matured and gone on to productive and responsible careers – Temptation to over or under punish – Sentencing depends on intent and damage done – Most young hackers receive probation, community service, and/or fines – Not until 2000 did a young hacker receive time in juvenile detention
Hacking (cont.) The Law: Catching and Punishing Hackers (cont.): • Security – Internet started with open access as a means of sharing information for research – Attitudes about security were slow to catch up with the risks – Firewalls are used to monitor and filter out communication from untrusted sites or that fit a profile of suspicious activity – Security is often playing catch-up to hackers as new vulnerabilities are discovered and exploited
Hacking (cont.) The Law: Catching and Punishing Hackers (cont.): • Responsibility for Security – Developers have a responsibility to develop with security as a goal – Businesses have a responsibility to use security tools and monitor their systems to prevent attacks from succeeding – Home users have a responsibility to ask questions and educate themselves on the tools to maintain security (personal firewalls, anti-virus and anti- spyware)
Hacking Discussion Questions • Is hacking that does no direct damage or theft a victimless crime? • Do you think hiring former hackers to enhance security is a good idea or a bad idea? Why?
Identity Theft and Credit Card Fraud Stealing Identities: • Identity Theft –various crimes in which a criminal or large group uses the identity of an unknowing, innocent person – Use credit/debit card numbers, personal information, and social security numbers – 18-29 year-olds are the most common victims because they use the web most and are unaware of risks – E-commerce has made it easier to steal card numbers and use without having the physical card
Identity Theft and Credit Card Fraud (cont.) Stealing Identities (cont.): • Techniques used to steal personal and financial information – Phishing - e-mail fishing for personal and financial information disguised as legitimate business e- mail – Pharming - false Web sites that fish for personal and financial information by planting false URLs in Domain Name Servers – Online resumes and job hunting sites may reveal SSNs, work history, birth dates and other information that can be used in identity theft
Identity Theft and Credit Card Fraud (cont.) Stealing Identities (cont.): • Techniques used to protect personal and financial information – Activation for new credit cards – Retailers do not print the full card number and expiration date on receipts – Software detects unusual spending activities and will prompt retailers to ask for identifying information – Services, like PayPal, act as third party allowing a customer to make a purchase without revealing their credit card information to a stranger
Identity Theft and Credit Card Fraud (cont.) Responses to Identity Theft: • Authentication of e-mail and Web sites • Use of encryption to securely store data, so it is useless if stolen • Authenticating customers to prevent use of stolen numbers, may trade convenience for security • In the event information is stolen, a fraud alert can flag your credit report; some businesses will cover the cost of a credit report if your information has been stolen
Identity Theft and Credit Card Fraud (cont.) Biometrics: • Biological characteristics unique to an individual • No external item (card, keys, etc.) to be stolen • Used in areas where security needs to be high, such as identifying airport personnel • Biometrics can be fooled, but more difficult to do so, especially as more sophisticated systems are developed
Identity Theft and Credit Card Fraud Discussion Questions • What steps can you take to protect yourself from identity theft and credit card fraud? • How can you distinguish between an e-mail that is a phishing attempt and an e-mail from a legitimate business?
Scams and Forgery Auctions: • FTC reports that online auction sites are one of the top sources of fraud complaints – Some sellers do not send items or send inferior products – Shill bidding is used to artificially raise prices – Sellers give themselves or friends glowing reviews to garner consumer trust • Auction sites use various techniques to counter dishonest sellers
Scams and Forgery (cont.) • Click fraud - repeated clicking on an ad to either increase a site’s revenue or to use up a competitor's advertising budget • Stock fraud - most common method is to buy a stock low, send out e-mails urging others to buy, and then sell when the price goes up, usually only for a short time • Digital Forgery - new technologies (scanners and high quality printers) are used to create fake checks, passports, visas, birth certificates, etc., with little skill and investment
Crime Fighting Versus Privacy and Civil Liberties Search and Seizure of Computers: • Requires a warrant to search and seize a computer – Court rulings inconclusive about whether information found on computers, but not covered by a warrant, is considered in ‘plain view’ • Automated searches – Can monitor constantly and less likely to miss suspicious activity – Can be programmed to only look for what is covered in a warrant
Crime Fighting Versus Privacy and . . . (cont.) The Issue of Venue: • Charges are generally filed where the crime occurs • Laws differ between states and countries • Where charges are filed may have significant impact if community standards apply • The FBI usually files in the state where the crime was discovered and the investigation began
Crime Fighting Versus Privacy and . . . (cont.) Cybercrime Treaty: • International agreement to foster international cooperation among law enforcement agencies of different countries in fighting copyright violations, pornography, fraud, hacking and other online fraud • Treaty sets common standards or ways to resolve international cases
Whose Laws Rule the Web When Digital Actions Cross Borders: • Laws vary from country to country • Corporations that do business in multiple countries must comply with the laws of all the countries involved • Someone whose actions are legal in their own country may face prosecution in another country where their actions are illegal
Whose Laws Rule the Web (Cont.) Arresting Foreign Visitors: • A Russian citizen was arrested for violating the DMCA when he visited the U.S. to present a paper at a conference; his software was not illegal in Russia • An executive of a British online gambling site was arrested as he transferred planes in Dallas (online sports betting is not illegal in Britain)
Whose Laws Rule the Web (Cont.) Libel, Speech and Commercial Law: • Even if something is illegal in both countries, the exact law and associated penalties may vary • Where a trial is held is important not just for differences in the law, but also the costs associated with travel between the countries; cases can take some time to come to trial and may require numerous trips • Freedom of speech suffers if businesses follow laws of the most restrictive countries
Whose Laws Rule the Web Discussion Questions • What suggestions do you have for resolving the issues created by differences in laws between different countries? • What do you think would work, and what do you think would not?

Recommended

Legal And Ethical Aspects.pptx
Legal And Ethical Aspects.pptxLegal And Ethical Aspects.pptx
Legal And Ethical Aspects.pptxfatimagull32
 
Hacking
HackingHacking
HackingFarkhanda Kiran
 
Hacking
Hacking Hacking
Hacking Farkhanda Kiran
 
Cyber security for engg students and diploma
Cyber security for engg students and diplomaCyber security for engg students and diploma
Cyber security for engg students and diplomaDrPraveenKumar37
 
E commerce
E commerce E commerce
E commerce DrSelvamohanaK
 
Computer crime
Computer crimeComputer crime
Computer crimeVinil Patel
 
Technology ComputerCrime presentation.pptx
Technology ComputerCrime presentation.pptxTechnology ComputerCrime presentation.pptx
Technology ComputerCrime presentation.pptxjohnmarklagarto1
 
Computer crime
Computer crimeComputer crime
Computer crimeUc Man
 

Recommended

Legal And Ethical Aspects.pptx
Legal And Ethical Aspects.pptxLegal And Ethical Aspects.pptx
Legal And Ethical Aspects.pptxfatimagull32
 
Hacking
HackingHacking
HackingFarkhanda Kiran
 
Hacking
Hacking Hacking
Hacking Farkhanda Kiran
 
Cyber security for engg students and diploma
Cyber security for engg students and diplomaCyber security for engg students and diploma
Cyber security for engg students and diplomaDrPraveenKumar37
 
E commerce
E commerce E commerce
E commerce DrSelvamohanaK
 
Computer crime
Computer crimeComputer crime
Computer crimeVinil Patel
 
Technology ComputerCrime presentation.pptx
Technology ComputerCrime presentation.pptxTechnology ComputerCrime presentation.pptx
Technology ComputerCrime presentation.pptxjohnmarklagarto1
 
Computer crime
Computer crimeComputer crime
Computer crimeUc Man
 
Protecting Client Data 11.09.11
Protecting Client Data 11.09.11Protecting Client Data 11.09.11
Protecting Client Data 11.09.11pdewitte
 
security threats.pptx
security threats.pptxsecurity threats.pptx
security threats.pptxSurajsingh809614
 
Cyber Safety ppt.pptx
Cyber Safety ppt.pptxCyber Safety ppt.pptx
Cyber Safety ppt.pptxCGC Technical campus,Mohali
 
Cyber Laws.ppt
Cyber Laws.pptCyber Laws.ppt
Cyber Laws.pptsilas Sargunam
 
CYBERFORENSICS
CYBERFORENSICSCYBERFORENSICS
CYBERFORENSICSDr. Prashant Vats
 
Hackers Cracker Network Intruder
Hackers Cracker Network IntruderHackers Cracker Network Intruder
Hackers Cracker Network IntruderErdo Deshiant Garnaby
 
Cyber security By rajeev.pptx
Cyber security By rajeev.pptxCyber security By rajeev.pptx
Cyber security By rajeev.pptxAmeyBarbade1
 
Cyber fraud a threat to E commerce
Cyber fraud a threat to E commerceCyber fraud a threat to E commerce
Cyber fraud a threat to E commerceSudeshna07
 
Cyberterrorism
CyberterrorismCyberterrorism
CyberterrorismVarshil Patel
 
Mis chapter 9
Mis chapter 9Mis chapter 9
Mis chapter 9Filmon Habtemichael Tesfai
 
How to become Hackers .
How to become Hackers .How to become Hackers .
How to become Hackers .Greater Noida Institute Of Technology
 
Hackers
HackersHackers
HackersMohamed Boudchiche
 
Cyber.ppt
Cyber.pptCyber.ppt
Cyber.pptPriyankaPawar57960
 
Cybercrime
CybercrimeCybercrime
CybercrimeVansh Verma
 
Cyber Security Awareness at Dadar April 25, 2010
Cyber Security Awareness at Dadar April 25, 2010Cyber Security Awareness at Dadar April 25, 2010
Cyber Security Awareness at Dadar April 25, 2010Vicky Shah
 
cyber crime.pptx
cyber crime.pptxcyber crime.pptx
cyber crime.pptxOmprakashRaut
 
Cyber laws
Cyber lawsCyber laws
Cyber lawsasimoly1141
 
CYBER CRIME
CYBER CRIMECYBER CRIME
CYBER CRIMEamani kadope
 
cs computer notes of studies in education
cs computer notes of studies in educationcs computer notes of studies in education
cs computer notes of studies in educationsrinivasgosula
 
Cyber Safety & Cyber Crimes by me.pptx
Cyber Safety & Cyber Crimes by me.pptxCyber Safety & Cyber Crimes by me.pptx
Cyber Safety & Cyber Crimes by me.pptxTejasSingh70
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introductionMaksud Ahmed
 
Introduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxIntroduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxpboyjonauth
 

More Related Content

Similar to Chapter5.ppt

Protecting Client Data 11.09.11
Protecting Client Data 11.09.11Protecting Client Data 11.09.11
Protecting Client Data 11.09.11pdewitte
 
Cyber security By rajeev.pptx
Cyber security By rajeev.pptxCyber security By rajeev.pptx
Cyber security By rajeev.pptxAmeyBarbade1
 
Cyber fraud a threat to E commerce
Cyber fraud a threat to E commerceCyber fraud a threat to E commerce
Cyber fraud a threat to E commerceSudeshna07
 
Cyber Security Awareness at Dadar April 25, 2010
Cyber Security Awareness at Dadar April 25, 2010Cyber Security Awareness at Dadar April 25, 2010
Cyber Security Awareness at Dadar April 25, 2010Vicky Shah
 
cs computer notes of studies in education
cs computer notes of studies in educationcs computer notes of studies in education
cs computer notes of studies in educationsrinivasgosula
 
Cyber Safety & Cyber Crimes by me.pptx
Cyber Safety & Cyber Crimes by me.pptxCyber Safety & Cyber Crimes by me.pptx
Cyber Safety & Cyber Crimes by me.pptxTejasSingh70
 

Similar to Chapter5.ppt (20)

Protecting Client Data 11.09.11
Protecting Client Data 11.09.11Protecting Client Data 11.09.11
Protecting Client Data 11.09.11
 
security threats.pptx
security threats.pptxsecurity threats.pptx
security threats.pptx
 
Cyber Safety ppt.pptx
Cyber Safety ppt.pptxCyber Safety ppt.pptx
Cyber Safety ppt.pptx
 
Cyber Laws.ppt
Cyber Laws.pptCyber Laws.ppt
Cyber Laws.ppt
 
CYBERFORENSICS
CYBERFORENSICSCYBERFORENSICS
CYBERFORENSICS
 
Hackers Cracker Network Intruder
Hackers Cracker Network IntruderHackers Cracker Network Intruder
Hackers Cracker Network Intruder
 
Cyber security By rajeev.pptx
Cyber security By rajeev.pptxCyber security By rajeev.pptx
Cyber security By rajeev.pptx
 
Cyber fraud a threat to E commerce
Cyber fraud a threat to E commerceCyber fraud a threat to E commerce
Cyber fraud a threat to E commerce
 
Cyberterrorism
CyberterrorismCyberterrorism
Cyberterrorism
 
Mis chapter 9
Mis chapter 9Mis chapter 9
Mis chapter 9
 
How to become Hackers .
How to become Hackers .How to become Hackers .
How to become Hackers .
 
Hackers
HackersHackers
Hackers
 
Cyber.ppt
Cyber.pptCyber.ppt
Cyber.ppt
 
Cybercrime
CybercrimeCybercrime
Cybercrime
 
Cyber Security Awareness at Dadar April 25, 2010
Cyber Security Awareness at Dadar April 25, 2010Cyber Security Awareness at Dadar April 25, 2010
Cyber Security Awareness at Dadar April 25, 2010
 
cyber crime.pptx
cyber crime.pptxcyber crime.pptx
cyber crime.pptx
 
Cyber laws
Cyber lawsCyber laws
Cyber laws
 
CYBER CRIME
CYBER CRIMECYBER CRIME
CYBER CRIME
 
cs computer notes of studies in education
cs computer notes of studies in educationcs computer notes of studies in education
cs computer notes of studies in education
 
Cyber Safety & Cyber Crimes by me.pptx
Cyber Safety & Cyber Crimes by me.pptxCyber Safety & Cyber Crimes by me.pptx
Cyber Safety & Cyber Crimes by me.pptx
 

Recently uploaded

microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introductionMaksud Ahmed
 
Introduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxIntroduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxpboyjonauth
 
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991RKavithamani
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Educationpboyjonauth
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityGeoBlogs
 
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...EduSkills OECD
 
Accessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactAccessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactdawncurless
 
Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104misteraugie
 
1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdfQucHHunhnh
 
Hybridoma Technology ( Production , Purification , and Application )
Hybridoma Technology ( Production , Purification , and Application ) Hybridoma Technology ( Production , Purification , and Application )
Hybridoma Technology ( Production , Purification , and Application ) Sakshi Ghasle
 
Separation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and ActinidesSeparation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and ActinidesFatimaKhan178732
 
Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Celine George
 
The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13Steve Thomason
 
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxContemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxRoyAbrique
 
Student login on Anyboli platform.helpin
Student login on Anyboli platform.helpinStudent login on Anyboli platform.helpin
Student login on Anyboli platform.helpinRaunakKeshri1
 
Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)eniolaolutunde
 
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptxSOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptxiammrhaywood
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Sapana Sha
 
1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdfQucHHunhnh
 

Recently uploaded (20)

microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introduction
 
Introduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxIntroduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptx
 
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptxINDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
 
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Education
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activity
 
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
 
Accessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactAccessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impact
 
Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104
 
1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf
 
Hybridoma Technology ( Production , Purification , and Application )
Hybridoma Technology ( Production , Purification , and Application ) Hybridoma Technology ( Production , Purification , and Application )
Hybridoma Technology ( Production , Purification , and Application )
 
Separation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and ActinidesSeparation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and Actinides
 
Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17
 
The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13
 
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxContemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
 
Student login on Anyboli platform.helpin
Student login on Anyboli platform.helpinStudent login on Anyboli platform.helpin
Student login on Anyboli platform.helpin
 
Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)
 
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptxSOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
 
1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf
 

Chapter5.ppt

  • 1. Slides prepared by Cyndi Chie and Sarah Frye A Gift of Fire Third edition Sara Baase Chapter 5: Crime
  • 2. What We Will Cover • Hacking • Identity Theft and Credit Card Fraud • Scams and Forgery • Crime Fighting Versus Privacy and Civil Liberties • Laws That Rule the Web
  • 3. Hacking • Hacking – currently defined as to gain illegal or unauthorized access to a file, computer, or network • The term has changed over time • Phase 1: early 1960s to 1970s – It was a positive term – A "hacker" was a creative programmer who wrote elegant or clever code – A "hack" was an especially clever piece of code
  • 4. Hacking (cont.) • Phase 2: 1970s to mid 1990s – Hacking took on negative connotations – Breaking into computers for which the hacker does not have authorized access – Still primarily individuals – Includes the spreading of computer worms and viruses and ‘phone phreaking’ – Companies began using hackers to analyze and improve security
  • 5. Hacking (cont.) • Phase 3: beginning with the mid 1990s – The growth of the Web changed hacking; viruses and worms could be spread rapidly – Political hacking (Hacktivism) surfaced – Denial-of-service (DoS) attacks used to shut down Web sites – Large scale theft of personal and financial information
  • 6. Hacking (cont.) Hacktivism, or Political Hacking: • Use of hacking to promote a political cause • Disagreement about whether it is a form of civil disobedience and how (whether) it should be punished • Some use the appearance of hacktivism to hide other criminal activities • How do you determine whether something is hacktivism or simple vandalism?
  • 7. Hacking (cont.) The Law: Catching and Punishing Hackers: • 1986 Congress passed the Computer Fraud and Abuse Act (CFAA) – Covers government computers, financial and medical systems, and activities that involve computers in more than one state, including computers connected to the Internet – The USA Patriot Act expanded the definition of loss to include the cost of responding to an attack, assessing damage and restoring systems
  • 8. Hacking (cont.) The Law: Catching and Punishing Hackers (cont.): • A variety of methods for catching hackers – Law enforcement agents read hacker newsletters and participate in chat rooms undercover – They can often track a handle by looking through newsgroup archives – Security professionals set up ‘honey pots’ which are Web sites that attract hackers, to record and study – Computer forensics is used to retrieve evidence from computers
  • 9. Hacking (cont.) The Law: Catching and Punishing Hackers (cont.): • Penalties for young hackers – Many young hackers have matured and gone on to productive and responsible careers – Temptation to over or under punish – Sentencing depends on intent and damage done – Most young hackers receive probation, community service, and/or fines – Not until 2000 did a young hacker receive time in juvenile detention
  • 10. Hacking (cont.) The Law: Catching and Punishing Hackers (cont.): • Security – Internet started with open access as a means of sharing information for research – Attitudes about security were slow to catch up with the risks – Firewalls are used to monitor and filter out communication from untrusted sites or that fit a profile of suspicious activity – Security is often playing catch-up to hackers as new vulnerabilities are discovered and exploited
  • 11. Hacking (cont.) The Law: Catching and Punishing Hackers (cont.): • Responsibility for Security – Developers have a responsibility to develop with security as a goal – Businesses have a responsibility to use security tools and monitor their systems to prevent attacks from succeeding – Home users have a responsibility to ask questions and educate themselves on the tools to maintain security (personal firewalls, anti-virus and anti- spyware)
  • 12. Hacking Discussion Questions • Is hacking that does no direct damage or theft a victimless crime? • Do you think hiring former hackers to enhance security is a good idea or a bad idea? Why?
  • 13. Identity Theft and Credit Card Fraud Stealing Identities: • Identity Theft –various crimes in which a criminal or large group uses the identity of an unknowing, innocent person – Use credit/debit card numbers, personal information, and social security numbers – 18-29 year-olds are the most common victims because they use the web most and are unaware of risks – E-commerce has made it easier to steal card numbers and use without having the physical card
  • 14. Identity Theft and Credit Card Fraud (cont.) Stealing Identities (cont.): • Techniques used to steal personal and financial information – Phishing - e-mail fishing for personal and financial information disguised as legitimate business e- mail – Pharming - false Web sites that fish for personal and financial information by planting false URLs in Domain Name Servers – Online resumes and job hunting sites may reveal SSNs, work history, birth dates and other information that can be used in identity theft
  • 15. Identity Theft and Credit Card Fraud (cont.) Stealing Identities (cont.): • Techniques used to protect personal and financial information – Activation for new credit cards – Retailers do not print the full card number and expiration date on receipts – Software detects unusual spending activities and will prompt retailers to ask for identifying information – Services, like PayPal, act as third party allowing a customer to make a purchase without revealing their credit card information to a stranger
  • 16. Identity Theft and Credit Card Fraud (cont.) Responses to Identity Theft: • Authentication of e-mail and Web sites • Use of encryption to securely store data, so it is useless if stolen • Authenticating customers to prevent use of stolen numbers, may trade convenience for security • In the event information is stolen, a fraud alert can flag your credit report; some businesses will cover the cost of a credit report if your information has been stolen
  • 17. Identity Theft and Credit Card Fraud (cont.) Biometrics: • Biological characteristics unique to an individual • No external item (card, keys, etc.) to be stolen • Used in areas where security needs to be high, such as identifying airport personnel • Biometrics can be fooled, but more difficult to do so, especially as more sophisticated systems are developed
  • 18. Identity Theft and Credit Card Fraud Discussion Questions • What steps can you take to protect yourself from identity theft and credit card fraud? • How can you distinguish between an e-mail that is a phishing attempt and an e-mail from a legitimate business?
  • 19. Scams and Forgery Auctions: • FTC reports that online auction sites are one of the top sources of fraud complaints – Some sellers do not send items or send inferior products – Shill bidding is used to artificially raise prices – Sellers give themselves or friends glowing reviews to garner consumer trust • Auction sites use various techniques to counter dishonest sellers
  • 20. Scams and Forgery (cont.) • Click fraud - repeated clicking on an ad to either increase a site’s revenue or to use up a competitor's advertising budget • Stock fraud - most common method is to buy a stock low, send out e-mails urging others to buy, and then sell when the price goes up, usually only for a short time • Digital Forgery - new technologies (scanners and high quality printers) are used to create fake checks, passports, visas, birth certificates, etc., with little skill and investment
  • 21. Crime Fighting Versus Privacy and Civil Liberties Search and Seizure of Computers: • Requires a warrant to search and seize a computer – Court rulings inconclusive about whether information found on computers, but not covered by a warrant, is considered in ‘plain view’ • Automated searches – Can monitor constantly and less likely to miss suspicious activity – Can be programmed to only look for what is covered in a warrant
  • 22. Crime Fighting Versus Privacy and . . . (cont.) The Issue of Venue: • Charges are generally filed where the crime occurs • Laws differ between states and countries • Where charges are filed may have significant impact if community standards apply • The FBI usually files in the state where the crime was discovered and the investigation began
  • 23. Crime Fighting Versus Privacy and . . . (cont.) Cybercrime Treaty: • International agreement to foster international cooperation among law enforcement agencies of different countries in fighting copyright violations, pornography, fraud, hacking and other online fraud • Treaty sets common standards or ways to resolve international cases
  • 24. Whose Laws Rule the Web When Digital Actions Cross Borders: • Laws vary from country to country • Corporations that do business in multiple countries must comply with the laws of all the countries involved • Someone whose actions are legal in their own country may face prosecution in another country where their actions are illegal
  • 25. Whose Laws Rule the Web (Cont.) Arresting Foreign Visitors: • A Russian citizen was arrested for violating the DMCA when he visited the U.S. to present a paper at a conference; his software was not illegal in Russia • An executive of a British online gambling site was arrested as he transferred planes in Dallas (online sports betting is not illegal in Britain)
  • 26. Whose Laws Rule the Web (Cont.) Libel, Speech and Commercial Law: • Even if something is illegal in both countries, the exact law and associated penalties may vary • Where a trial is held is important not just for differences in the law, but also the costs associated with travel between the countries; cases can take some time to come to trial and may require numerous trips • Freedom of speech suffers if businesses follow laws of the most restrictive countries
  • 27. Whose Laws Rule the Web Discussion Questions • What suggestions do you have for resolving the issues created by differences in laws between different countries? • What do you think would work, and what do you think would not?