INTERNET CRIME AS A NEW THREAT TO

ECONOMIC SECURITY:

INTERNATIONAL ASPECT

Tavrida National University named

after Vernadsky V.I. (Simferopol city)

II International Science and Practice Conference

“Modern Strategic Solutions for Information

Development of Economy, Society and Business” e

17 - 19 July, 2013

Vladimir Golubev

Director

Cybercrime Prevention Department

“Cyber Safety Unit”

NOOSPHERE VENTURES

Every citizen of Ukraine

has to be aware

about the ways

to protect himself

in cyber space

4th place in the world

Ukraine is the 4th in the world

by number of cyber attacks

launched from the country. It

is shown by the research of

Deutsche Telekom, the

leading German

communications service

provider who visualized a

map of the countries being the

sources of cyber attacks.

Link to the original source: http://www.crime-research.ru/news/09.03.2013/7514/

Internet crime

Distribution of computer viruses

Theft of funds

Distribution of child pornography

Cyber attack in the web

Cyber frauds

There are many types of criminal offences

connected with use of computer, and theft of

money is one such offences, comprising the

following types:

Theft of funds

Hackers’ attacks against banks or financial systems;

Cyber frauds related to e-money transfer;

Frauds with bank plastic cards.

Cybercrime

According to NBU for the period of 2012,

total number of fraudulent operations with

payment cards in our country increased by 47% at

once and number of banks where money were

stolen from their accounts, increased from 35 to

57. As before, the leading number of unauthorized

transfers are from the individuals’ accounts (every

day we have 50 complaints from the public, last

year 11,4 million hryvnias disappeared from the

accounts).

Shimming

Pursuant to the name «Shim» (thin

strip of overlay) of this technology, instead of traditional bulky plates

(skimmers) overlaid inside the ATM plastic card insertion slot, shimming uses very thin flexible plate,

embedded through this slot into ATM

and almost unnoticeable.

A new type of money theft from credit cards

came to replace skimming.

MIA regularly detects evidences of

fraudulent overlays in ATM

Link to the original source: http://interfax.com.ua/

Number of skimming devices detected in Ukraine in

2012 increased by 62%, and in 2013 the evidences of such

devices are discovered a few times per week, said Leonid

Timchenko, Deputy Chief of Cybercrime Prevention

Department of MIA of Ukraine.

According to MIA in 2011

they detected 45 of such ATM, and

in 2012 – 73, and for the first

quarter of 2013 they found 37

devices.

Phishing – how to fight

against it?

Usually the outward appearance of such pages is

identical to the genuine one however there are a

number of distinctive features:

- as a rule on the right part of the browser’s address line

the phishing pages have no locking icon indicating that

data exchange is carried out through secure connection,

and the address line begins with http:// instead of

https://;

- As a rule on a phishing page phishers ask to input

bank’s one-time password, cell phone number, etc.

According to MIA of Ukraine:

Within the period since

January till the end of

November, 2012 in

Ukraine they instituted

745 cases of cybercrime

and convicted 113 people.

According to MIA of Russia:

Number of cybercrimes registered by

law-enforcement authorities in Russia

in 2012 has increased almost by one

third in comparison with 2011.

According to Alexey Moshkov, Chief

of Bureau of Special Technical

measures of RF MIA, in 2012 Russia

registered high-tech crimes by 28 %

more than in 2011.

“Denial of service” is one of the most widespread attacks

Purpose of DDoS attack – is to paralyze work of the website

which is exposed to such attack.

DDoS (Distributed Denial of Service)

«Hack-services»…

Financial and commercial losses caused by DDoS (foregone income, customer attrition, reduction of products’ output, reputational damage) considerably exceed the direct operating losses.

Financial loss

Defense against DDoS consists in spurious traffic rejection on the level of enterprise or Internet provider as well as in neutralization of botnets which make distributed attacks.

Defense against DDoS-

attacks

For today the fundamental document regulating the issues of international collaboration in fighting against cybercrime is «Convention on Cybercrime». The Convention stipulates measures to be undertaken by the countries on national level in respect of the crimes against confidentiality, integrity and accessibility of computer data and systems, offences connected with distribution of child pornography and those related to violation of copyrights and allied rights.

International aspect

http://www.alppp.ru/law/pravosudie/46/konvencija-o-prestupnosti-v-sfere-kompyuternoj-informacii---185-rus--angl-.html

(Budapest, 23 November, 2001)

Individual paragraph of the Convention is concerned with international collaboration in the field of extradition because of crimes stipulated by the convention, voluntary submission of information related to investigation of crimes stipulated by the Convention as well as procedures connected with mutual aid request in absence of any international agreements between the countries.

European Convention on Cybercrime

According to European Union more than one million people becomes cybercrime victims every day. Aggregate damage from such cybercrimes reaches 300 billion Euro per year. All countries of European Union fight against cybercrimes however they still do it separately with rather variable success. Many of the national law-enforcement authorities rapidly reach the limits of their potential as far as space for cybercrimes has no limits in Internet.

European Collaboration

On the 11th April, 2013 on the meeting of the Council of Inter-Parliamentary Assembly of CIS in his speech, Chairman of PACE, proposed to develop collaboration in the field of legal issues as well as in fighting against cybercrimes.

On the side of

PACE

European Cybercrime Center commenced their work on the 11th January, 2013 in order to carry out collective counteraction of cybercrime threat. They are structural unit of (Europol) with headquarter in Hague. a. Among the priorities of the Centre there is

investigation of Internet frauds and, in particular, frauds of e-banking system and counteraction of Internet-paedophilia

The European Cybercrime

Centre - EC3

European Cybercrime Centre

Contacts Cybercrime Centre - EC3

Our «Cyber Safety Unit» Company has already established the first contacts which, at this point, are on the level of mail exchange and discussing the areas of common interest as well as joining together the efforts of cybercrime counteraction with European Cybercrime Centre.

Troels Oerting, Director of European

Cybercrime Centre (Assistant Director,

Europol & Head, European Cybercrime

Centre)

Complexity of problems, which are typical of criminal offences in Internet, necessitates close collaboration between non-government organizations, experts and law-enforcement authorities of CIS countries in this area. Our Company maintains collaboration in this field in the form of information exchange, cybercrime incidents investigation and assistance in training the law-enforcement staff in Republic of Kazakhstan, Moldova and Russian Federation.

Collaboration within CIS

For efficient fighting against cybercrimes we need a system of measures and implementation of the respective national policy in this field. Just adoption of new laws is not able to withstand the rise in cybercrimes. We need a set of measures aimed not only to develop of law-enforcement base, but also to increase the literacy rate of the citizens, judicial and law-enforcement authorities.

Some conclusions

One of our major goals is to arrange

successful collaboration with law-

enforcement authorities in the field of

fighting against cybercrimes as well as

to render assistance to the companies

who suffered from cyber attacks.

«Cyber Safety Unit» Project

Cybercrime Prevention Department

Information exchange

Advisory

services

Publishing

activities

Areas of activities

Training Holding

a Conference

Cyber Safety Unit

International collaboration

Russian

Federation

http://www.cyberpol.ru/

Internet-Project concerned with

cybercrime prevention issues

http://kz-cert.kz/ru/

Cybercrime incidents

emergency response service

(KZ-CERT).

http:// Security.ase.md

Information Security Lab

Moldova Academy of Economics

Republic of

Kazakhstan

Republic of

Moldova

International collaboration

Korea USA Great Britain

http://www.soca.gov.uk/

http://www.soca.gov.uk/

NHTCU – the National Hi-Tech

Crime Unit

Serious Organised Crime Agency

(Between 2001 and 2006 the UK's

National Hi-Tech Crime Unit)

http://www.kias.or.kr/

Korea Information

Assurance Society

Kyonggi University

http://policy-traccc.gmu.edu/

Terrorism, Transnational Crime and

Corruption Center (TraCCC)

Thanks for your attention! E-mail: vladimir@crime-research.org

office@kodekschesti.com

Phone: +38(061)2340292

Mobile: +38(050)3225496

Vladimir Golubev

Director

Cybercrime Prevention

Department

“Cyber Safety Unit”

NOOSPHERE VENTURES

http://cybersafetyunit.com/

Cyber Safety Unit