INFORMATION ASSURANCE

AND SECURITY
PREPARE BY: CHRISA MAE S. TURLA
COMPUTER CRIME
COMPUTER CRIME
• A computer crime is any unlawful activity that is done using a
computer.
• Cyber crime is an illegal activity committed on the internet.
History and where it started
• The exact origin of cyber crime, the very first instance in which
someone committed a crime across a computer network, is
impossible to know.
• First case of use of computer for theft was in 1973, A teller at a local
New York bank used a computer to embezzle over $2 million
dollars.
• The first spam email took place in the year 1978.
• The first virus was installed on Apple Computer in the year 1982.
History and where it started
• In 1981, lan Murphy, known as Captain Zap to his fans, was the first
person convicted of a cyber crime.
• He hacked into the AT&T network and changed the internal clock to
charge off-hours rates at peak times.
• He received 1,000 hours of community service and 2.5 years of
probation, a mere slap on the wrist compared to today's penalties,
and was the inspiration for the movie Sneakers.
TYPES OF CYBER CRIME
• Hacking
• Financial crimes
• Phishing
• Sale of illegal articles
• Software Piracy
• Intellectual Property crimes
• Cyber Stalking
• Forgery
• Denial of Service
• Cyber Defamation
HACKING
• The actual word is “Cracking” and not “Hacking”.
• “Deliberately gaining unauthorized access to an information system.”
• They help the government to protect national documents of strategic
importance, help organizations to protect documents and company
secrets.
• A Cracker breaks into someone else's computer system, often on a
network, bypasses passwords or licenses in computer programs or in
other ways intentionally breaches computer security.
• But with time, both the word are used interchangeably.
PHISHING
• Acquiring information such as usernames, password and credit card
details by disguising as a trustworthy entity.
• India is among the top 15 countries hosting “phishing” sites which
aims at stealing confidential information such as passwords and
credit card details.
CYBER STALKING
• Is use of the Internet or other electronic means to stalk someone.
This term is used interchangeably with online harassment and
online abuse.
DENIAL OF SERVICE
• Floods the bandwidth of the
victim’s network.
• Fills his e-mail box with spam mail.
• Deprives him of the services he is
entitled to access or provide.
• Uses a technique called spoofing
and buffer overflow.
SOFTWARE PIRACY
• Illegal copying of genuine programs.
• Counterfeiting and distribution of products.
EXAMPLES OF SOFTWARE PIRACY
• End-user copying
• Hard disk loading
• Counterfeiting
• Illegal downloads from the Internet
VIRUS DISSEMINATION
• A program that can ‘infect’ other legitimate programs by modifying
them to include a possibly ‘evolved’ copy of itself.
• Viruses can spread themselves, without the knowledge or
permission of the users, to potentially large numbers of programs
on many machines.
TYPICAL ACTION OF A VIRUS
• Erase files
• Scramble data on a hard disk
• Cause erratic screen behavior
• Halt the PC
• Just replicate itself
MOTIVATING FACTORS FOR CYBERCRIMES
• The challenge….. “because it’s there!”
• Ego
• Espionage
• Ideology
• Mischief
• Money (Extortion or Theft)
• Revenge
COST OF CYBER CRIME IN INDIA
In India in 2010
• 29.9 million people fell victim to cyber crime.
• $ 4 billion in direct losses.
• $ 3.6 billion in time spent to resolve crimes.
• 80% of cyber users have been a victim of cyber crime.
• 17% of adults online have experienced cybercrime on their mobile
phone.
Why India?
• A rapidly growing online user.
• 121 million internet users.
• 65 million active internet users, up 28% from 51 million in 2010.
• 50 million users shop online one commerce and online shopping
sites.
• 46+ million social network users.
• 346 million mobile users had subscribed to data packages.
A final word
• Treat your password like you treat your tooth brush. Never give to
any one else to use, and change it every few months.
COMPUTER FORENSICS
FORENSICS
• Forensic Science or forensic is the application of broad spectrum of
sciences to answer to questions related to legal system, may be for
crime or civil actions.
• The use of science and technology to investigate and establish facts
in criminal or civil courts of law.
COMPUTER FORENSICS
• Goal of computer forensics is to examine digital media in a
forensically sound manner with the aim of identifying, preserving,
recovering, analyzing and presenting facts and opinions about the
information.
WHY?
• The main task or the advantage from the computer forensic is to
catch the culprit or the criminal who is involved in the crime related
to the computers.
• Computer forensics has emerged as important part in the disaster
recovery management.
• Ability to search through a massive amount of data- Quickly,
Thoroughly and In any language.
• The importance lies mainly in handling criminal actions such as
fraud, phishing, identity theft or many other criminal activities.
WHO USES FORENSICS?
• Criminal Prosecutors
• Civil litigators
• Insurance Companies
• Corporations
• Law Enforcement Officials
• Individuals
What cyber forensics aims at?
• Identify root cause of an event to ensure it won’t happen again.
• Must understand the problem before you can be sure it won’t be exploited
again.
• Who was responsible for the event?
• Most computer crime cases are not prosecuted.
• Consider acceptability in court of law as our standard for investigative
practice.
• Ultimate goal is to conduct investigation in a manner that will stand up to
legal scrutiny.
• Treat every case like a court case!.
STEPS FOR COMPUTER FORENSICS
• Acquisition
• Identification
• Evaluation
• Presentation
 METHODOLOGY
• Shut Down the Computer • Evaluate File Slack
• Document the Hardware Configuration • Evaluate Unallocated Space (Erased Files)
of The System
• Transport the Computer System to A • Search Files, File Slack and Unallocated
Secure Location Space for Key Words
• Make Bit Stream Backups of Hard Disks • Document File Names, Dates and Times
and Floppy Disks
• Mathematically Verify Data on
• Identify File, Program and Storage
All
Storage Devices Anomalies
• Document the System Date and Time • Evaluate Program Functionality
• Make a List of Key Search Words • Document Your Findings
• Evaluate the Windows Swap File
EVIDENCES:
• Forensics involves collection of
evidences as an important part
for investigation.
5 rules of evidences:
• Complete
• Admissible • Exculpatory evidence for alternative
suspects.
• Must be able to be used in court or
elsewhere. • Reliable
• No question about authenticity &
• Authentic veracity.
• Evidence relates to incident in • Believable
relevant way. • Clear, easy to understand, and
believable by a jury.