SlideShare a Scribd company logo

3e - Computer Crime

Download as PPT, PDF
MISY, profile picture
MISY

The document discusses various topics related to computer security and privacy. It covers types of computer crimes and challenges with detection and prosecution. Various methods used by computer criminals are described, along with tools for securing systems, data, and networks. Best practices for backups, disaster recovery, and privacy protection are provided. Computer forensics processes are summarized for investigating computer crimes.

Technology
1 of 31
Downloaded 146 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
Security and Privacy: Computers and the Internet CIS 105 Revised October 2004
Objectives Explain the different types of computer crime and the difficulties of discovery and prosecution Describe the aspects of securing corporate data, including software and data security, disaster recovery plans, and security legislation Describe in general terms how viruses work, the damage they can cause, and procedures used to prevent this damage Explain the threats to personal privacy posed by computers and the Internet. Describe actions you can take to maximize your privacy
Computer Crime Most commonly reported categories Credit card fraud Data communications fraud Unauthorized access to computer files Unlawful copying of copyrighted software
What’s at Stake? Consumption of Staff Time Downtime Fraud and Theft Adverse Publicity Vandalism Character Assassination Loss of Privacy Risks to Public Safety Denial of Service (DoS)
Methods Computer Criminals Use Bomb Data diddling Denial of service attacks Piggybacking Salami technique Scavenging Trapdoor Trojan horse Zapping
Computer Crime and Cybercrime: Tools and Techniques Tricks for Obtaining Passwords Password Guessing Shoulder Surfing Packet Sniffers Dumpster Diving Social Engineering Superuser Status Forgery Security Loophole Detection Programs Computer Viruses More Rogue Programs (time bomb, worm, trojan horse)
Meet the Attackers Spies Swindlers Shills Cyberstalkers and Sexual Predators Information Warfare
Playing it Safe: A System of Safeguards Protects system and data from deliberate or accidental damage Protecting Computers from Power-Related Problems Backing up Data Protects system and data from unauthorized access Controlling Access Using Firewalls Using Encryption Using Antivirus Programs Avoiding Scams Preventing Cyberstalkers Possessed Objects (PIN) Biometrics Devices Callback Systems Audit Trail Pop-Up Stoppers Spy-Bots
Discovery and Prosecution Crimes are often undetected When they are detected, they are often not reported Prosecution is difficult Law enforcement agencies and prosecutors are ill-equipped to handle computer crime Judges and juries often don’t understand computer crime Congress passed the Computer Fraud and Abuse Act to increase awareness of computer crime
Computer Forensics Uncovering computer-stored information suitable for use as evidence in courts of law Restores files and/or e-mail messages that someone has deleted Some experts are available for hire, but most are on the staffs of police departments and law firms
Controlling Access Four means of controlling who has access to the computer What you have Badge, key, or card to give you physical access to the computer room or a locked terminal What you know Password, key code What you do Software What you are Biometrics
A Disaster Recovery Plan A method of restoring computer processing operations and data files in the event of major destruction Several approaches Manual services Buying time at a service bureau Consortium Plan should include priorities for restoring programs, plans for notifying employees, and procedures for handling data in a different environment
Software Security Who owns custom-made software? What prevents a programmer from taking a copy of the program? Answer is well established If the programmer is employed by the company, the software belongs to the company If the programmer is a consultant, ownership of the software should be specified in the contract
Data Security Several techniques can be taken to prevent theft or alteration of data Secured waste Internal controls Auditor checks Applicant screening Passwords Built-in software protection
Personal Computer Security Physical security of hardware Secure hardware in place with locks and cables Avoid eating, drinking, and smoking around computers
Protecting Disk Data Use a surge protector to prevent electrical problems from affecting data files Uninterruptible power supply includes battery backup Provides battery power in the event power is lost Allows users to save work and close files properly Back up files regularly
 
Preventing Virus Infections Install antivirus program on all computers; update Write-protect rescue disk Never start computer with floppy disk in drive A: Scan floppy disk before using it Check all download programs for virus (download directory) Back up files regularly; scan back-up program prior to backing up. Ensure virus free.
A Firewall A combination of hardware and software that sits between an organization’s network and the Internet All traffic between the two goes through the firewall Protects the organization from unauthorized access Can prevent internal users from accessing inappropriate Internet sites
Encryption Scrambling data so that it can only be read by a computer with the appropriate key Encryption key converts the message into an unreadable form Message can be decrypted only by someone with the proper key Private key encryption – senders and receivers share the same key Public key encryption – encryption software generates the key
Being Monitored Employers can monitor employees’ e-mail, use of the Internet, and count the number of keystrokes per minute Employees are often unaware they are being monitored Web sites can easily collect information when a user just visits the site Web sites use cookies to store your preferences
Cookies A small text file stored on your hard drive File is sent back to the server each time you visit that site Stores preferences, allowing Web site to be customized Stores passwords, allowing you to visit multiple pages within the site without logging in to each one Tracks surfing habits, targeting you for specific types of advertisements
Spamming Mass advertising via e-mail Can overflow your e-mail inbox Bogs down your e-mail server, increasing the cost of e-mail service Preventing spam
Worst Practices Email forwarding Auto reply HTML email Instant Messaging Peer to Peer Networking (P2P) Software Downloads Unauthorized Users Public Networks/Wireless Networks
Recovery & Security Backup systems Disaster Recovery Plan Emergency -- Backup – Recovery – Test Computer Security Plan
Backing Up Files Back up to tape drive, CD-RW, or DVD-RAM You can use software that automatically backs up at a certain type of day Disk mirroring Makes second copy of everything you put on disk to another hard disk
Types of Backup Three types of backup Full backup – copies everything from the hard drive Differential backup – copies all files that have been changed since the last full backup Incremental backup – copies only those files that have been changed since either the last full backup or the last incremental backup Comprehensive backup plan involves periodic full backups, complemented by more frequent incremental or differential backups
Backup Methods
Your Turn! How Would You Handle It? Security risks Safeguarding a computer Computer viruses Computer backups Disaster recovery Security/privacy issues
If asked, can you…. Explain the different types of computer crime and the difficulties of discovery and prosecution Describe the aspects of securing corporate data, including software and data security, disaster recovery plans, and security legislation Describe in general terms how viruses work, the damage they can cause, and procedures used to prevent this damage Explain the threats to personal privacy posed by computers and the Internet. Describe actions you can take to maximize your privacy
Sources Capron; Computers: Tools for An Information Age, 8 th Ed. 2003 Pfaffenberger; Computers in Your Future 2003 Microsoft Clipart

More Related Content

PPT
Computer crime
Surya Prasad
 
PPTX
2014-09-03 Cybersecurity and Computer Crimes
Raffa Learning Community
 
PDF
Computer crimes
Muniba Bukhari
 
PPT
computer crime
00jitesh00
 
PPT
Computer crimes and criminals
Online
 
PPTX
Types Of Computer Crime
Alexander Zhuravlev
 
PPT
Computer crime
Uc Man
 
PPTX
Computer Crimes
Ivy Rose Recierdo
 
Computer crime
Surya Prasad
 
2014-09-03 Cybersecurity and Computer Crimes
Raffa Learning Community
 
Computer crimes
Muniba Bukhari
 
computer crime
00jitesh00
 
Computer crimes and criminals
Online
 
Types Of Computer Crime
Alexander Zhuravlev
 
Computer crime
Uc Man
 
Computer Crimes
Ivy Rose Recierdo
 

What's hot (20)

PPTX
Cyber Crime
mukeshkaran
 
PPTX
[Exposicion] Computer and Internet Crime
German Teran
 
PPTX
Cyber Crime
Mazhar Nazik
 
PPTX
Cyber Crime and Security Presentation
Preethi Kumaresh
 
PPTX
Cybercrime: A Seminar Report
Arindam Sarkar
 
PPT
History and future cybercrime
Online
 
PPTX
Cyber Crime
Akash Dolas,PMP [Open Networker]
 
PPTX
Cyber crime
Md. Atiqur Rahman
 
PPTX
Cybercrime
SERCOD
 
PPTX
Computer crime and internet crime privacy
GouthamXander
 
PPTX
Cyber crime
Rajendra Dangwal
 
DOC
Assignment of cyber crimes for oumh1203
Faridah Husin
 
PPTX
Traditional problem associated with cyber crime
vishalgohel12195
 
PPTX
Cyber crime
Jayant Raj
 
PPTX
cyber crime
Akash Mehta
 
PPTX
Cyber crime
dixitas
 
PPTX
Cyber crime
yazad dumasia
 
PDF
Cyber Crime Types & Tips
Deepak Kumar (D3)
 
PPTX
Power point cybercrime
12698
 
DOCX
Cyber crime
Sanket Gogoi
 
Cyber Crime
mukeshkaran
 
[Exposicion] Computer and Internet Crime
German Teran
 
Cyber Crime
Mazhar Nazik
 
Cyber Crime and Security Presentation
Preethi Kumaresh
 
Cybercrime: A Seminar Report
Arindam Sarkar
 
History and future cybercrime
Online
 
Cyber Crime
Akash Dolas,PMP [Open Networker]
 
Cyber crime
Md. Atiqur Rahman
 
Cybercrime
SERCOD
 
Computer crime and internet crime privacy
GouthamXander
 
Cyber crime
Rajendra Dangwal
 
Assignment of cyber crimes for oumh1203
Faridah Husin
 
Traditional problem associated with cyber crime
vishalgohel12195
 
Cyber crime
Jayant Raj
 
cyber crime
Akash Mehta
 
Cyber crime
dixitas
 
Cyber crime
yazad dumasia
 
Cyber Crime Types & Tips
Deepak Kumar (D3)
 
Power point cybercrime
12698
 
Cyber crime
Sanket Gogoi
 
Ad

Similar to 3e - Computer Crime (20)

PPT
Security and privacy
Mohammed Adam
 
PPT
Security and privacy
Haa'Meem Mohiyuddin
 
PPTX
Chap11
nitin_009
 
PPT
Chap11
Aman Sharma
 
PPT
css ppt.ppt
ShivaTyagi26
 
PPT
9. Computer Ethics.ppt
asm071149
 
PPT
COB4 Computer Crime
angbeelee
 
PPTX
Computer security concepts
Prachi Gulihar
 
PPT
Data security
sbmiller87
 
PPTX
information security and backup system
Engr. Md. Jamal Uddin Rayhan
 
PPTX
TAMUC LO 7
Dr. Christopher Jones
 
PPT
Computer security and_privacy_2010-2011
lbcollins18
 
PPT
Data+security+sp10
ismaelhaider
 
DOCX
Chapter 10.0
Adebisi Tolulope
 
PPT
Beekman5 std ppt_12
Department of Education - Philippines
 
DOCX
Chapter 11Database Control Issues Security, Backup an.docx
keturahhazelhurst
 
PPTX
Introduction to Security (Hardware, Software, Data & Policies)
Amr Salah
 
PPTX
INFORMATION AND CYBER SECURITY
Nishant Pawar
 
PPTX
Cyber security
Dr. B T Sampath Kumar
 
DOCX
Computer security and privacy
eiramespi07
 
Security and privacy
Mohammed Adam
 
Security and privacy
Haa'Meem Mohiyuddin
 
Chap11
nitin_009
 
Chap11
Aman Sharma
 
css ppt.ppt
ShivaTyagi26
 
9. Computer Ethics.ppt
asm071149
 
COB4 Computer Crime
angbeelee
 
Computer security concepts
Prachi Gulihar
 
Data security
sbmiller87
 
information security and backup system
Engr. Md. Jamal Uddin Rayhan
 
TAMUC LO 7
Dr. Christopher Jones
 
Computer security and_privacy_2010-2011
lbcollins18
 
Data+security+sp10
ismaelhaider
 
Chapter 10.0
Adebisi Tolulope
 
Beekman5 std ppt_12
Department of Education - Philippines
 
Chapter 11Database Control Issues Security, Backup an.docx
keturahhazelhurst
 
Introduction to Security (Hardware, Software, Data & Policies)
Amr Salah
 
INFORMATION AND CYBER SECURITY
Nishant Pawar
 
Cyber security
Dr. B T Sampath Kumar
 
Computer security and privacy
eiramespi07
 
Ad

More from MISY (20)

PPT
Payroll applications new
MISY
 
PPT
Data management new
MISY
 
PPT
Uses of dbms
MISY
 
PPT
3. use of ict in time management
MISY
 
PPT
Ict in time management ca
MISY
 
PPT
Ict in publishing ca
MISY
 
PPT
Ict in teaching learning ca
MISY
 
PPT
Ict in advertising ca
MISY
 
PPT
Use of ict in advertising
MISY
 
PPT
2b working practices
MISY
 
PPT
Working practices ca
MISY
 
PPT
Process control ca
MISY
 
PPT
Intro to control ca
MISY
 
PPT
2a contol systems
MISY
 
PPT
Robots and cars ca
MISY
 
PPT
3e - Security And Privacy
MISY
 
PPT
3f - Health & Safety
MISY
 
PPT
3e - Security Of Data
MISY
 
PPT
3e - Data Protection
MISY
 
PPT
3d - Working Practices
MISY
 
Payroll applications new
MISY
 
Data management new
MISY
 
Uses of dbms
MISY
 
3. use of ict in time management
MISY
 
Ict in time management ca
MISY
 
Ict in publishing ca
MISY
 
Ict in teaching learning ca
MISY
 
Ict in advertising ca
MISY
 
Use of ict in advertising
MISY
 
2b working practices
MISY
 
Working practices ca
MISY
 
Process control ca
MISY
 
Intro to control ca
MISY
 
2a contol systems
MISY
 
Robots and cars ca
MISY
 
3e - Security And Privacy
MISY
 
3f - Health & Safety
MISY
 
3e - Security Of Data
MISY
 
3e - Data Protection
MISY
 
3d - Working Practices
MISY
 

Recently uploaded (20)

PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Teaching material agriculture food technology
LiaRayya
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 

3e - Computer Crime

  • 1. Security and Privacy: Computers and the Internet CIS 105 Revised October 2004
  • 2. Objectives Explain the different types of computer crime and the difficulties of discovery and prosecution Describe the aspects of securing corporate data, including software and data security, disaster recovery plans, and security legislation Describe in general terms how viruses work, the damage they can cause, and procedures used to prevent this damage Explain the threats to personal privacy posed by computers and the Internet. Describe actions you can take to maximize your privacy
  • 3. Computer Crime Most commonly reported categories Credit card fraud Data communications fraud Unauthorized access to computer files Unlawful copying of copyrighted software
  • 4. What’s at Stake? Consumption of Staff Time Downtime Fraud and Theft Adverse Publicity Vandalism Character Assassination Loss of Privacy Risks to Public Safety Denial of Service (DoS)
  • 5. Methods Computer Criminals Use Bomb Data diddling Denial of service attacks Piggybacking Salami technique Scavenging Trapdoor Trojan horse Zapping
  • 6. Computer Crime and Cybercrime: Tools and Techniques Tricks for Obtaining Passwords Password Guessing Shoulder Surfing Packet Sniffers Dumpster Diving Social Engineering Superuser Status Forgery Security Loophole Detection Programs Computer Viruses More Rogue Programs (time bomb, worm, trojan horse)
  • 7. Meet the Attackers Spies Swindlers Shills Cyberstalkers and Sexual Predators Information Warfare
  • 8. Playing it Safe: A System of Safeguards Protects system and data from deliberate or accidental damage Protecting Computers from Power-Related Problems Backing up Data Protects system and data from unauthorized access Controlling Access Using Firewalls Using Encryption Using Antivirus Programs Avoiding Scams Preventing Cyberstalkers Possessed Objects (PIN) Biometrics Devices Callback Systems Audit Trail Pop-Up Stoppers Spy-Bots
  • 9. Discovery and Prosecution Crimes are often undetected When they are detected, they are often not reported Prosecution is difficult Law enforcement agencies and prosecutors are ill-equipped to handle computer crime Judges and juries often don’t understand computer crime Congress passed the Computer Fraud and Abuse Act to increase awareness of computer crime
  • 10. Computer Forensics Uncovering computer-stored information suitable for use as evidence in courts of law Restores files and/or e-mail messages that someone has deleted Some experts are available for hire, but most are on the staffs of police departments and law firms
  • 11. Controlling Access Four means of controlling who has access to the computer What you have Badge, key, or card to give you physical access to the computer room or a locked terminal What you know Password, key code What you do Software What you are Biometrics
  • 12. A Disaster Recovery Plan A method of restoring computer processing operations and data files in the event of major destruction Several approaches Manual services Buying time at a service bureau Consortium Plan should include priorities for restoring programs, plans for notifying employees, and procedures for handling data in a different environment
  • 13. Software Security Who owns custom-made software? What prevents a programmer from taking a copy of the program? Answer is well established If the programmer is employed by the company, the software belongs to the company If the programmer is a consultant, ownership of the software should be specified in the contract
  • 14. Data Security Several techniques can be taken to prevent theft or alteration of data Secured waste Internal controls Auditor checks Applicant screening Passwords Built-in software protection
  • 15. Personal Computer Security Physical security of hardware Secure hardware in place with locks and cables Avoid eating, drinking, and smoking around computers
  • 16. Protecting Disk Data Use a surge protector to prevent electrical problems from affecting data files Uninterruptible power supply includes battery backup Provides battery power in the event power is lost Allows users to save work and close files properly Back up files regularly
  • 17.  
  • 18. Preventing Virus Infections Install antivirus program on all computers; update Write-protect rescue disk Never start computer with floppy disk in drive A: Scan floppy disk before using it Check all download programs for virus (download directory) Back up files regularly; scan back-up program prior to backing up. Ensure virus free.
  • 19. A Firewall A combination of hardware and software that sits between an organization’s network and the Internet All traffic between the two goes through the firewall Protects the organization from unauthorized access Can prevent internal users from accessing inappropriate Internet sites
  • 20. Encryption Scrambling data so that it can only be read by a computer with the appropriate key Encryption key converts the message into an unreadable form Message can be decrypted only by someone with the proper key Private key encryption – senders and receivers share the same key Public key encryption – encryption software generates the key
  • 21. Being Monitored Employers can monitor employees’ e-mail, use of the Internet, and count the number of keystrokes per minute Employees are often unaware they are being monitored Web sites can easily collect information when a user just visits the site Web sites use cookies to store your preferences
  • 22. Cookies A small text file stored on your hard drive File is sent back to the server each time you visit that site Stores preferences, allowing Web site to be customized Stores passwords, allowing you to visit multiple pages within the site without logging in to each one Tracks surfing habits, targeting you for specific types of advertisements
  • 23. Spamming Mass advertising via e-mail Can overflow your e-mail inbox Bogs down your e-mail server, increasing the cost of e-mail service Preventing spam
  • 24. Worst Practices Email forwarding Auto reply HTML email Instant Messaging Peer to Peer Networking (P2P) Software Downloads Unauthorized Users Public Networks/Wireless Networks
  • 25. Recovery & Security Backup systems Disaster Recovery Plan Emergency -- Backup – Recovery – Test Computer Security Plan
  • 26. Backing Up Files Back up to tape drive, CD-RW, or DVD-RAM You can use software that automatically backs up at a certain type of day Disk mirroring Makes second copy of everything you put on disk to another hard disk
  • 27. Types of Backup Three types of backup Full backup – copies everything from the hard drive Differential backup – copies all files that have been changed since the last full backup Incremental backup – copies only those files that have been changed since either the last full backup or the last incremental backup Comprehensive backup plan involves periodic full backups, complemented by more frequent incremental or differential backups
  • 29. Your Turn! How Would You Handle It? Security risks Safeguarding a computer Computer viruses Computer backups Disaster recovery Security/privacy issues
  • 30. If asked, can you…. Explain the different types of computer crime and the difficulties of discovery and prosecution Describe the aspects of securing corporate data, including software and data security, disaster recovery plans, and security legislation Describe in general terms how viruses work, the damage they can cause, and procedures used to prevent this damage Explain the threats to personal privacy posed by computers and the Internet. Describe actions you can take to maximize your privacy
  • 31. Sources Capron; Computers: Tools for An Information Age, 8 th Ed. 2003 Pfaffenberger; Computers in Your Future 2003 Microsoft Clipart