Cyber Crime - Computer Fraud Assignment

profilejeguiris87
Berkeley_Fall_2016_JUS4403_ppt_ch14.pptx
Home>Law homework help>Criminal homework help>Cyber Crime - Computer Fraud Assignment

Corporate Security – Cyber Crime

Charles S. Barr, CPP, CFE

Presentation Topics

Private Sector Security Trends

Expansion of Security Function

Risk Management

Security Director’s Role in Cyber Security

Cyber Crime’s Global Impact on Business

Defining Cyber Crime

Categories of Cyber Crime

Cyber Extortion-Ransomware

Distributed Denial of Service Attacks (DDoS)

Theft of Proprietary Information

Individual’s Role in Cyber Security

Security Manager to Risk Manager

Security Manager

Guards

Guns

Locks

Risk Manager

Information Security

Physical Security

Personnel Security

Information: Fraud Units, AML Units, Creation of a new security position, Chief Information Security Officer, CISO, to focus on Information Security; Clear Desk Inspections, Applicant background; Employee Interim BI, Workplace Violence Workshops, Business Continuity Exercises with IT

3

Security Director-Chief Security Officer

Security Director

Former military or law enforcement background

Criminal Justice Degree

Corporate organization position

Sub-unit of legal, human resources or real estate

Chief Security Officer

Private or public sector background

Business Degree

Corporate organization position

Direct reporting line to senior corporate officials

Risk Management

Anticipating Risks

Recognizing Risks

Analyzing Risks

Take Steps to Reduce or Prevent Risks

Evaluate Results

5

Protecting Organization’s Assets

Risk manager protects organization’s assets

implement controls to reduce the negative risks

Asset

Anything of value to organization

Proprietary information: formulas, trade secrets

People

Equipment

Computer hardware - software

Measuring Asset’s Worth

Three factors

Overall value of asset to organization

Immediate impact

Indirect impact

Can organization function without the asset; short term impact, long term impact, impact on other assets

7

Security Director’s Focus Cyber Security Five Areas

1. Operational 2. Physical 3. Electronic 4. Cultural 5. Non-Tangible

Paul Benne, Seminar, 2015, ASIS Western New Jersey Chapter

8

Operational

-Know the means & methods of

cyber adversaries-the enemy

-Establish policies, procedures,

programs and training to

protect organization’s assets

Physical

-Control physical access to data

systems including computers, data

centers, co-locations & facility

-Ensure walls, doors & ceilings are

hardened according to asset value

Electronic

-Consider analytics technologies to provide

advanced warning systems

-Incorporate complexities in ID credentials

-Use electronic system or combination of systems

to assist in the physical & operational security

efforts

Cultural

-Educate employees about threats

-Test them

-Reward them

-Cultivate a culture of awareness

-Question everything

Non-Tangible

-Communicate with employees

-Give employees a clear

pathway & permission to act

on suspicious activities

What is Cyber Crime

Cyber Crime & Technology

Cyber crime definitions

Cyber crime : intended act using computers or other technologies in a virtual setting, internet

Computer crime: criminal act committed with a computer

Computer-related crime: criminal act in which a computer is involved, even peripherally

Digital crime: unauthorized access, dissemination, corruption of electronically stored data

Definitions used interchangeably by security professionals

15

Cyber Extortion-Ransomware

Form of online crime

Cybercriminal uses internet, threatens to attack systems or hold data assets until payment is made

After payment sends decryption key to victim

Originally cybercriminals used DDoS attacks to force victim into submission

16

History of Ransomware

2005-2006- earliest cases seen in Russia

Used TROJ_CRYZIP.A that zipped certain files before overwriting the original files

Left only password-protected zip files in the user’s system

Ransom note demanded $300

Targeted files types-DOC, XLS, JPG, ZIP, PDF

History of Ransomware, continued

By March 2012, spread across Europe & North America

Some displayed a notification page from victim’s local police agency instead of ransom note

See examples in following slides

Mexico

United States

Ransomware 2016

First Quarter of 2016, compared to last Quarter 2015 has seen a 789% increase in the number of phishing emails containing malicious code, mostly ransomware, according to PhishMe, security company providing anti-phishing solutions.

Phishing-solicitation of personal information via e-mail by cyber-criminals for fraudulent purposes

JavaScript download applications are main carriers

Payment is usually made in Bitcoin, digital currency

Ransomware 2016, continued

Ransomware 2016, continued

Ransomware 2016, continued

Distributed Denial of Service Attacks (DDoS)

Attack overloads company system, web-server, with numerous communications, prevents legitimate traffic from getting through

Use multiple personal computers (PC’s) without owners knowledge

Use as a diversion, attackers steal money from accounts using stolen credentials

Banks, e-commerce and retail companies common targets

DDoS Attacks continued

E-MAIL EXTORTION CAMPAIGNS THREATENING

DISTRIBUTED DENIAL OF SERVICE ATTACKS

The Internet Crime Complaint Center (IC3) recently received an increasing number of complaints from businesses reporting extortion campaigns via e-mail. In a typical complaint, the victim business receives an e-mail threatening a Distributed Denial of Service (DDoS) attack to its Website unless it pays a ransom. Ransoms vary in price and are usually demanded in Bitcoin.

Source: FBI, July 31, 2015 Alert Number I-073115-PSA

DDoS Attacks continued

Attack Motivations

Richard Clark, former Special Advisor to the US President, provided following:

Cybercrime: financial gain

Hacktivisim: ideological-persuade certain actions or “voices”

Espionage: gain information on another organization for an advantage

War (Cyber): attack adversary’s centers of power, critical infrastructure entities

DDoS Attacks continued

Radware’s Global Security Report: 2014-2015

Security Industry Survey (2014)

330 global respondents

39% - large organizations (500 million annual revenue)

23 industries: mostly telecom/internet/cloud; fin’l services; comp-related products & manufacturing

Interviews of eleven top security officers from groups

Radware’s Security Survey Results

DDoS most cited threat type-46%

Unauthorized access-41%

Advanced persistent threats-39%

Security Survey Results, continued

Business Concerns Due to Cyber-Attacks

Reputational Loss-47%

Revenue Loss-21%

Service Outage-12%

Productivity Loss-7%

Customer/Partner Loss-5%

Penalties/Fines-3%

US Justice Department Case

On January 21, 2016, a grand jury in the Southern District of New York indicted seven Iranian nationals for their involvement in conspiracies to conduct a coordinated campaign of distributed denial of service (“DDoS”) attacks against the United States financial sector and other United States companies from 2011 through 2013.  Each defendant was a manager or employee of ITSecTeam or Mersad, private security computer companies based in the Islamic Republic of Iran that performed work on behalf of the Iranian Government, including the Islamic Revolutionary Guard Corps.

Theft of Proprietary Information

More than one-half of NYSE companies identified cyber threats as risks in SEC filings

Kellogg Co. identified food production processes as a critical asset

Dedicated security group to protect trade secrets

Trade secrets stored on a system not connected to the internet

WSJ article (6/29/14)

Kellogg hired a first time Chief Information Security Officer, CISO

32

Proprietary Information

Valuable asset for many organizations

1. Intellectual property

Commercially valuable product of human intellect

2. Trade secrets

Financial, business, scientific, technical, economic or engineering information

Proprietary Information

3. Patented material

Information has the government grant of right, privilege or authority, excludes others from using, marketing or selling material for period of time

4. Copyright

Property right for original work of authorship

Literary

Musical

Dramatic

Graphic

Proprietary Theft Case Example

4/30/15: Kolon Industries Inc., South Korean industrial company pled guilty to conspiring to steal trade secrets from E. I. DuPont de Nemours & Co.’s (DuPont)

6/06-2/09: Kolon conspired with former DuPont employees to steal secrets for making Kevlar, high-strength fiber used for body armor and other products

Fined $360 million in restitution/fines

Individual Role in Cyber Security

Protect Company Information

Protect Personal Information

Any Questions

References

Benne, P.F. (2015). ASIS Western New Jersey Chapter Cyber Security Seminar, Sentinel Consulting , LLC

Britz, M.T. (2013). Computer Forensics and Cyber Crime. Upper Saddle River, New Jersey: Pearson Education, Inc.

Dempsey, J.S. (2011). Introduction to Private Security. Belmont, California: Wadsworth, Cengage Learning

Hess, K.M. (2009). Introduction to Private Security. Belmont, California: Wadsworth, Cengage Learning

References

Microsoft Malware Protection Center, Internet

Radware Inc., Global Application & Network Security Report 2014-2015; DDoS Handbook

Trend Micro Inc., www.trendmicro.com

U.S. Department of Justice, Office of Public Affairs, Press Release, (4/30/2015).

Yadron, D. (6/29/2014).Corporate Boards Race to Shore Up Cybersecurity. The Wall Street Journal.