INTERNET CRIME AS A NEW THREAT TO ECONOMIC SECURITY ... · Cyber frauds related to e-money...
Transcript of INTERNET CRIME AS A NEW THREAT TO ECONOMIC SECURITY ... · Cyber frauds related to e-money...
INTERNET CRIME AS A NEW THREAT TO
ECONOMIC SECURITY:
INTERNATIONAL ASPECT
Tavrida National University named
after Vernadsky V.I. (Simferopol city)
II International Science and Practice Conference
“Modern Strategic Solutions for Information
Development of Economy, Society and Business” e
17 - 19 July, 2013
Vladimir Golubev
Director
Cybercrime Prevention Department
“Cyber Safety Unit”
NOOSPHERE VENTURES
4th place in the world
Ukraine is the 4th in the world
by number of cyber attacks
launched from the country. It
is shown by the research of
Deutsche Telekom, the
leading German
communications service
provider who visualized a
map of the countries being the
sources of cyber attacks.
Link to the original source: http://www.crime-research.ru/news/09.03.2013/7514/
Internet crime
Distribution of computer viruses
Theft of funds
Distribution of child pornography
Cyber attack in the web
Cyber frauds
There are many types of criminal offences
connected with use of computer, and theft of
money is one such offences, comprising the
following types:
Theft of funds
Hackers’ attacks against banks or financial systems;
Cyber frauds related to e-money transfer;
Frauds with bank plastic cards.
Cybercrime
According to NBU for the period of 2012,
total number of fraudulent operations with
payment cards in our country increased by 47% at
once and number of banks where money were
stolen from their accounts, increased from 35 to
57. As before, the leading number of unauthorized
transfers are from the individuals’ accounts (every
day we have 50 complaints from the public, last
year 11,4 million hryvnias disappeared from the
accounts).
Shimming
Pursuant to the name «Shim» (thin
strip of overlay) of this technology, instead of traditional bulky plates
(skimmers) overlaid inside the ATM plastic card insertion slot, shimming uses very thin flexible plate,
embedded through this slot into ATM
and almost unnoticeable.
A new type of money theft from credit cards
came to replace skimming.
MIA regularly detects evidences of
fraudulent overlays in ATM
Link to the original source: http://interfax.com.ua/
Number of skimming devices detected in Ukraine in
2012 increased by 62%, and in 2013 the evidences of such
devices are discovered a few times per week, said Leonid
Timchenko, Deputy Chief of Cybercrime Prevention
Department of MIA of Ukraine.
According to MIA in 2011
they detected 45 of such ATM, and
in 2012 – 73, and for the first
quarter of 2013 they found 37
devices.
Phishing – how to fight
against it?
Usually the outward appearance of such pages is
identical to the genuine one however there are a
number of distinctive features:
- as a rule on the right part of the browser’s address line
the phishing pages have no locking icon indicating that
data exchange is carried out through secure connection,
and the address line begins with http:// instead of
https://;
- As a rule on a phishing page phishers ask to input
bank’s one-time password, cell phone number, etc.
According to MIA of Ukraine:
Within the period since
January till the end of
November, 2012 in
Ukraine they instituted
745 cases of cybercrime
and convicted 113 people.
According to MIA of Russia:
Number of cybercrimes registered by
law-enforcement authorities in Russia
in 2012 has increased almost by one
third in comparison with 2011.
According to Alexey Moshkov, Chief
of Bureau of Special Technical
measures of RF MIA, in 2012 Russia
registered high-tech crimes by 28 %
more than in 2011.
“Denial of service” is one of the most widespread attacks
Purpose of DDoS attack – is to paralyze work of the website
which is exposed to such attack.
DDoS (Distributed Denial of Service)
Financial and commercial losses caused by DDoS (foregone income, customer attrition, reduction of products’ output, reputational damage) considerably exceed the direct operating losses.
Financial loss
Defense against DDoS consists in spurious traffic rejection on the level of enterprise or Internet provider as well as in neutralization of botnets which make distributed attacks.
Defense against DDoS-
attacks
For today the fundamental document regulating the issues of international collaboration in fighting against cybercrime is «Convention on Cybercrime». The Convention stipulates measures to be undertaken by the countries on national level in respect of the crimes against confidentiality, integrity and accessibility of computer data and systems, offences connected with distribution of child pornography and those related to violation of copyrights and allied rights.
International aspect
http://www.alppp.ru/law/pravosudie/46/konvencija-o-prestupnosti-v-sfere-kompyuternoj-informacii---185-rus--angl-.html
(Budapest, 23 November, 2001)
Individual paragraph of the Convention is concerned with international collaboration in the field of extradition because of crimes stipulated by the convention, voluntary submission of information related to investigation of crimes stipulated by the Convention as well as procedures connected with mutual aid request in absence of any international agreements between the countries.
European Convention on Cybercrime
According to European Union more than one million people becomes cybercrime victims every day. Aggregate damage from such cybercrimes reaches 300 billion Euro per year. All countries of European Union fight against cybercrimes however they still do it separately with rather variable success. Many of the national law-enforcement authorities rapidly reach the limits of their potential as far as space for cybercrimes has no limits in Internet.
European Collaboration
On the 11th April, 2013 on the meeting of the Council of Inter-Parliamentary Assembly of CIS in his speech, Chairman of PACE, proposed to develop collaboration in the field of legal issues as well as in fighting against cybercrimes.
On the side of
PACE
European Cybercrime Center commenced their work on the 11th January, 2013 in order to carry out collective counteraction of cybercrime threat. They are structural unit of (Europol) with headquarter in Hague. a. Among the priorities of the Centre there is
investigation of Internet frauds and, in particular, frauds of e-banking system and counteraction of Internet-paedophilia
The European Cybercrime
Centre - EC3
European Cybercrime Centre
Contacts Cybercrime Centre - EC3
Our «Cyber Safety Unit» Company has already established the first contacts which, at this point, are on the level of mail exchange and discussing the areas of common interest as well as joining together the efforts of cybercrime counteraction with European Cybercrime Centre.
Troels Oerting, Director of European
Cybercrime Centre (Assistant Director,
Europol & Head, European Cybercrime
Centre)
Complexity of problems, which are typical of criminal offences in Internet, necessitates close collaboration between non-government organizations, experts and law-enforcement authorities of CIS countries in this area. Our Company maintains collaboration in this field in the form of information exchange, cybercrime incidents investigation and assistance in training the law-enforcement staff in Republic of Kazakhstan, Moldova and Russian Federation.
Collaboration within CIS
For efficient fighting against cybercrimes we need a system of measures and implementation of the respective national policy in this field. Just adoption of new laws is not able to withstand the rise in cybercrimes. We need a set of measures aimed not only to develop of law-enforcement base, but also to increase the literacy rate of the citizens, judicial and law-enforcement authorities.
Some conclusions
One of our major goals is to arrange
successful collaboration with law-
enforcement authorities in the field of
fighting against cybercrimes as well as
to render assistance to the companies
who suffered from cyber attacks.
«Cyber Safety Unit» Project
Cybercrime Prevention Department
Information exchange
Advisory
services
Publishing
activities
Areas of activities
Training Holding
a Conference
Cyber Safety Unit
International collaboration
Russian
Federation
http://www.cyberpol.ru/
Internet-Project concerned with
cybercrime prevention issues
http://kz-cert.kz/ru/
Cybercrime incidents
emergency response service
(KZ-CERT).
http:// Security.ase.md
Information Security Lab
Moldova Academy of Economics
Republic of
Kazakhstan
Republic of
Moldova
International collaboration
Korea USA Great Britain
http://www.soca.gov.uk/
http://www.soca.gov.uk/
NHTCU – the National Hi-Tech
Crime Unit
Serious Organised Crime Agency
(Between 2001 and 2006 the UK's
National Hi-Tech Crime Unit)
http://www.kias.or.kr/
Korea Information
Assurance Society
Kyonggi University
http://policy-traccc.gmu.edu/
Terrorism, Transnational Crime and
Corruption Center (TraCCC)
Thanks for your attention! E-mail: [email protected]
Phone: +38(061)2340292
Mobile: +38(050)3225496
Vladimir Golubev
Director
Cybercrime Prevention
Department
“Cyber Safety Unit”
NOOSPHERE VENTURES
http://cybersafetyunit.com/
Cyber Safety Unit