Presentation is loading. Please wait.

Presentation is loading. Please wait.

Responding to Cybercrime in the Post-9/11 World Scott Eltringham Computer Crime and Intellectual Property Section U.S. Department of Justice (202) 353-7848.

Published byDorcas Owens Modified over 9 years ago

Similar presentations

Presentation on theme: "Responding to Cybercrime in the Post-9/11 World Scott Eltringham Computer Crime and Intellectual Property Section U.S. Department of Justice (202) 353-7848."— Presentation transcript:

1 Responding to Cybercrime in the Post-9/11 World Scott Eltringham Computer Crime and Intellectual Property Section U.S. Department of Justice (202) 353-7848

2 Crime on the Internet The Internet provides a target rich environment for criminals Attacks are easy, low risk, hard to trace technically, hard to prosecute, and can have a high payoff Sophisticated tools are readily available Access can be from anywhere and anonymous

3 Computer Attacks Attacks on: –Confidentiality, –Integrity or –Availability of information or systems Theft of information, services, or damage

4 Typical Criminal Cases Fraud –Credit Card Fraud Economic Espionage –Large File Transfers –Raiding of Employees/Technical Know-how Hacking –Denial of Service Attack –“Cyber-vandalism”

5 Impacts of 9-11 Heightened awareness by businesses of the vulnerability of their information systems and physical plants. Companies need to revisit their security procedures in light of changed circumstances. Looming threat of CNA

6 Topics Overview What is Being Done Why Statistics are Crucial

7 The USA Patriot Act Provided new and clarified existing electronic evidence gathering authorities Why the “USA Patriot Act”? –Senate: Uniting and Strengthening America (Act) –House: Providing Appropriate Tools Required to Intercept and Obstruct Terrorism (Act)

8 Overview The Pen Register and Trap and Trace Statute The Computer Trespasser Exception The Cable Act Fix Other Amendments to the Wiretap Statute and ECPA

9 The Pen/Trap Statute Old statute: the term "pen register" means a device which records or decodes electronic or other impulses which identify the numbers dialed or otherwise transmitted on the telephone line to which such device is attached (18 U.S.C. 3127(3)) New statute: Technology-neutral language

10 The Pen/Trap Statute (cont.) New Language: the term "pen register" means a device or process which records or decodes dialing, routing, addressing, or signaling information transmitted by an instrument or facility from which a wire or electronic communication is transmitted... Technology-neutral adjustments made throughout

11 Computer Trespasser Exception Old law: law enforcement often had to get a wiretap order in order to help victims monitor computer hackers This made no sense: the wiretap statute protected hackers even where they had no reasonable expectation of privacy in their communications New law: new exception to Title III –allows interception of “computer trespassers” - i.e. those without authorization to use a computer

12 Other Amendments Voice mail fix Scope of subpoenas under 2703(c) Voluntary disclosure of information by providers Nationwide search warrants for e-mail Voice wiretaps in hacker investigations

13 Why Do Statistics Matter? Companies Often Reluctant to Report Proof that they are far from unique would be very helpful

14 14 Why Companies Don’t Report Loss of Control –Direction of case: LE can’t be fired –Costs –Publicity Lack of Confidence –Unsure of LE interest –Unsure of LE competence

15 Should companies report to LE? YES! Federal agents have investigative skills forensic knowledge access to attachés in foreign countries established relationships with Internet players can aggregate your information with data from other cybercrime victims

16 Other Surveys CSI/FBI –503 respondents, a good start –90% had computer security breaches –80% had financial losses as a result –only 34% reported to LE PWC –44% of British businesses had suffered a “malicious security breach” in the last year

17 Where To Get More Information Computer Crime Section: (202) 353-1787 My e-mail: scott.eltringham@usdoj.gov Computer Crime Section’s page on the World Wide Web:

Download ppt "Responding to Cybercrime in the Post-9/11 World Scott Eltringham Computer Crime and Intellectual Property Section U.S. Department of Justice (202) 353-7848."

Similar presentations

Legal Issues in Information Security

Legal Issues in Information Security
Electronic Surveillance, Security, and Privacy Professor Peter P. Swire Ohio State University InSITes -- Carnegie Mellon February 7, 2002.

Electronic Surveillance, Security, and Privacy Professor Peter P. Swire Ohio State University InSITes -- Carnegie Mellon February 7, 2002.
Key New Surveillance Provisions Professor Peter P. Swire Ohio State University Privacy 2001 Conference October 4, 2001.

Key New Surveillance Provisions Professor Peter P. Swire Ohio State University Privacy 2001 Conference October 4, 2001.
Introduction and Overview of Digital Crime and Digital Terrorism

Introduction and Overview of Digital Crime and Digital Terrorism
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.

Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.

© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.
Criminal Procedure for the Criminal Justice Professional 11 th Edition John N. Ferdico Henry F. Fradella Christopher Totten Prepared by Tony Wolusky Searches.

Criminal Procedure for the Criminal Justice Professional 11 th Edition John N. Ferdico Henry F. Fradella Christopher Totten Prepared by Tony Wolusky Searches.
Computer Forensics Principles and Practices by Volonino, Anzaldua, and Godwin Chapter 12: Federal Rules and Criminal Codes.

Computer Forensics Principles and Practices by Volonino, Anzaldua, and Godwin Chapter 12: Federal Rules and Criminal Codes.
NC State University - March 2002 - David Drooz1 USA PATRIOT Federal anti- terrorism law Effective October 26, 2001 December 31, 2005, sunset for some of.

NC State University - March David Drooz1 USA PATRIOT Federal anti- terrorism law Effective October 26, 2001 December 31, 2005, sunset for some of.
The Patriot Act And computing. /criminal/cybercrime/PatriotAct.htm US Department of Justice.

The Patriot Act And computing. /criminal/cybercrime/PatriotAct.htm US Department of Justice.
USA PATRIOT ACT: Is it a legitimate law to protect national security or is it a violation of your Civil Liberties? Essential Question:

USA PATRIOT ACT: Is it a legitimate law to protect national security or is it a violation of your Civil Liberties? Essential Question:
Forensic and Investigative Accounting Chapter 15 Cybercrime Management: Legal Issues © 2007 CCH. All Rights Reserved. 4025 W. Peterson Ave. Chicago, IL.

Forensic and Investigative Accounting Chapter 15 Cybercrime Management: Legal Issues © 2007 CCH. All Rights Reserved W. Peterson Ave. Chicago, IL.
Mohd Taufik Abdullah Department of Computer Science

Mohd Taufik Abdullah Department of Computer Science
Chapter 15 Counter-terrorism. Introduction  United and Strengthening America by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism.

Chapter 15 Counter-terrorism. Introduction  United and Strengthening America by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism.
Policing the Internet: Higher Education Law and Policy Rodney Petersen, Policy Analyst Wendy Wigen, Policy Analyst EDUCAUSE.

Policing the Internet: Higher Education Law and Policy Rodney Petersen, Policy Analyst Wendy Wigen, Policy Analyst EDUCAUSE.
CYBERCRIME – WEEK 1 (Lectures 1, 2) DAVID THAW University of Connecticut School of Law.

CYBERCRIME – WEEK 1 (Lectures 1, 2) DAVID THAW University of Connecticut School of Law.
1 Book Cover Here Copyright © 2014, Elsevier Inc. All Rights Reserved PART C FOLLOW-UP MEASURES: REAPING INFORMATION Criminal Investigation: A Method for.

1 Book Cover Here Copyright © 2014, Elsevier Inc. All Rights Reserved PART C FOLLOW-UP MEASURES: REAPING INFORMATION Criminal Investigation: A Method for.
Computer Forensics BACS 371

Computer Forensics BACS 371
Cyber X-Force-SMS alert system for E-mail threats.

Cyber X-Force-SMS alert system for threats.
This work is supported by the National Science Foundation under Grant Number DUE-0302909. Any opinions, findings and conclusions or recommendations expressed.

This work is supported by the National Science Foundation under Grant Number DUE Any opinions, findings and conclusions or recommendations expressed.

Similar presentations

Ads by Google