Cybercrime has become a serious problem in the world we live in. The abundance of personal computers that are readily available at relatively low prices has spawned the growth in Cybercrime all over the globe. As a result, law enforcement agencies have developed cybercrime forensics which is designed to track down those that are responsible for cyber crimes. The purpose of this discussion is to analyze this subject and discuss the consequences and effects through evidence and reason. Let us begin our discussion with a description of cybercrime and cybercrime forensics.
Cybercrime and Cybercrime forensics
Cybercrime involves a plethora of crimes including everything from the creation and spreading of worms and viruses to identity theft. According to the Department of Justice cybercrime is defined as "any violations of criminal law that involve a knowledge of computer technology for their perpetration, investigation, or prosecution (Ditzion, et al.)." More specifically cybercrimes that have taken place in the last decade include viruses, worms, Trojan horses, sniffers, logic bombs and denial of service attacks (Ditzion, et al.).
According to an article entitled Cybercrime Facts "Approximately 80% of all cyber crime is the result of insider attacks. Sometimes, the cyber attacker is a recently laid-off system administrator whose remote-account privileges still are active, or perhaps he created back doors to the network. Organized crime groups also can be behind security breaches (Panczenco)."
The increase in cybercrime over the past decade has forced law enforcement agencies to find new ways of attempting to find the people related to such crimes. The perpetrators of cybercrime are so difficult to find because they can be located all over the world and some countries do not have laws that prevent certain types of crimes carried out over the internet. The problems associated with the laws of different countries combined with the fact that the perpetrators of cybercrime can easily erase evidence related to the crimes they have committed.
In recent years businesses and individuals alike have been adversely affected by cybercrime. In the case of businesses many have hired cybercrime investigators to find out who the perpetrators are and how their computer networks were breeched. According to an article entitled "The Role of Organizations in Identity Theft Response: The Organization-Individual Victim Dynamic ," those that investigate cybercrime are often called upon by the victimized company through private firms that specialize in computer forensics examinations (Lacey et al.). In turn, these private-sector firms will then get law enforcement into the crime solving process as soon as they confirm that illegal activity has occurred (Lacey et al.). The article explains that
"Cooperation between law enforcement and private-sector investigators is still a fairly new idea, however. Several years ago, when the author's company first started conducting forensics investigations, it was often met with distrust by both their private sector clients, who feared bad publicity or losing control of company data, and law enforcement agents, who were reluctant to share information with third-party vendors. However, this reluctance is diminishing as law enforcement becomes more accustomed to working with third-party cyber forensics experts and as clients see that the process can work. Companies like Ubizen work under strict conditions and with detailed nondisclosure agreements, which protects clients and helps allay fears "Lacey et al.).
Cybercrime forensics is defined as "the preservation, identification, extraction, documentation and interpretation of computer data (Kruse and Heiser)." There are different types of cybercrime forensics. One that is used frequently is network forensics. This type of forensics involves searching for anomalies in files and reviewing log entries (Panczenko). Such forensics can be used to aid carriers in establishing how a system was attacked (Panczenko).
Another type of cybercrime forensics involves tracking down those that download child pornography. According to an article entitled "DoD targets child porn on military PCs" the Defense Cyber Crime Center, is seeking to quickly investigate child pornography cases with a new software tool developed under the military's Project KIDS (Known Image Database Systems) initiative (Messmer). The software automates analysis through a hashing technique which searches both known and potential child pornography in data files (Messmer). The author explains that 'The tool also looks for malware, such as backdoors or Trojans, that might indicate the PC was subverted to download child pornography without the PC user's knowledge.Currently, the center has approved more than 300 tools for computer forensics purposes in the military The three primary tools are EnCase from Guidance Software, the Forensic Toolkit from...
Cyber Crime Malicious activities like identity theft, harassment and phishing activities are conducted by the cyber criminals by making use of the anonymous context of the cyber world to their advantage. Phishing scams are conducted in such a manner by the scammers that websites are created by them and emails are sent out in order to trick the account holders into revealing sensitive information like passwords and account numbers. These crimes
Cyber Crime Task Force "Are computer vulnerabilities growing faster than measures to reduce them? Carelessness in protecting oneself, tolerance of bug-filled software, vendors selling inadequately tested products, or the unappreciated complexity of network connectivity has led to…abuse…" (Lukasik, 2011). The evidence is overwhelming that cyber crimes are not only increasing each year, but the sophistication of the attacks is greater each year and the impacts of attacks are more severe each year
These "stepping stone" computers can be located anywhere in the physical world because real-space is irrelevant to activity in cyberspace (Brenner, 379)." The use of stepping stones can make it difficult for law enforcement to find where an attack actually originated. As was previously mentioned in this discussion, Hackers are often used by companies to develop stronger security. Hackers often perfect their techniques at conventions that also feature hacking competitions.
Since the late 1980s, the Council has addressed the growing international concern over computer-related crimes. In 1997, it established a Committee of Experts on Crime in Cyberspace (PC-CY) to begin drafting a binding Convention to facilitate international cooperation in the investigation and prosecution of computer crimes. The United States actively participated in both the drafting and plenary sessions (Chawki). The Convention stipulates actions targeted at national and inter-governmental levels, directed
This phase is described by Carrier as the phase where we "...use the evidence that we found and determine what events occurred in the system" (Carrier, 2005). 2.2. The United States Department of Justice's (USDOJ) digital forensic analysis methodology The second methodology under review in this paper has been put forward by the United States Department of Justice. This consists of four basic phases: collection, examination, analysis and reporting (Shin, 2011).
DIBS Forensic Workstation - Complete solution for problems faced by investigator of computer crimes; FREDDIE - Forensic recovery of evidence deice diminutive interrogation equipment; EnCASE - Fully integrated forensic application for Windows; and ProDiscover DFT - completely integrated Windows ™ application for the collection, analysis, management and reporting of computer disk evidence. Designed specifically to meet NIST (National Institute of Standards and Technology) standards. (Timberline Technologies, 2005) Harris (2005) states that if anti-forensic
Our semester plans gives you unlimited, unrestricted access to our entire library of resources —writing tools, guides, example essays, tutorials, class notes, and more.
Get Started Now