Stories
Slash Boxes
Comments
Search

News for nerds, stuff that matters

Slashdot Log In

Log In

Create Account  |  Retrieve Password

Online Crime Seen as Growing Threat to Business, Politics

Posted by Zonk on Sat Jan 19, 2008 11:40 PM
from the can't-we-all-just-play-some-wow dept.
Security Businesses Government The Almighty Buck News Politics
BobB passed us a link to a NetworkWorld article, exploring the ongoing realization in business circles of the dangers online criminals pose. The piece raises the possibility that criminal elements are gaining access to US research labs in an effort to ferret out corporate and governmental information. One institute referred to in the article states: "Economic espionage will be increasingly common as nation-states use cyber theft of data to gain economic advantage in multinational deals. The attack of choice involves targeted spear phishing with attachments, using well-researched social engineering methods to make the victim believe that an attachment comes from a trusted source." We just recently discussed possible hacker involvement in several municipal blackouts.
+ -
story

Related Stories

[+] CIA Claims Cyber Attackers Blacked Out Cities 280 comments
Dotnaught writes to tell us InformationWeek is reporting that the CIA admitted today that recent power outages in multiple cities outside the United States are the result of cyberattacks. "We have information, from multiple regions outside the United States, of cyber intrusions into utilities, followed by extortion demands. We suspect, but cannot confirm, that some of these attackers had the benefit of inside knowledge. We have information that cyberattacks have been used to disrupt power equipment in several regions outside the United States. In at least one case, the disruption caused a power outage affecting multiple cities. We do not know who executed these attacks or why, but all involved intrusions through the Internet."
Firehose:Cyber espionage seen as growing threat to business by Anonymous Coward
This discussion has been archived. No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

Online Crime Seen as Growing Threat to Business, Politics 25 Comments More /

 Full
 Abbreviated
 Hidden
More
Loading... please wait.

  • CyberLaw(TM) (Score:3, Funny)

    by madhuri (1014279) on Saturday January 19 2008, @11:56PM (#22114588)
    Looks like we need to call in Eric Menhart to lay down the CyberLaw(TM)...

  • The irony of anyonimity (Score:4, Interesting)

    by unassimilatible (225662) on Sunday January 20 2008, @12:03AM (#22114626) Journal
    Used to be, mafia guys would have no Social Security card, driver's license, or bank accounts to avoid being traced by law enforcement or the IRS. Now, I feel like having none of those things to avoid the crooks online.
    • Yup, I think it is time to move to a shack in Montana to maintain your anonymity. I heard that there is one going cheap - Una, Una Kazomething... Yeah, that's the place...
  • ... of search engines like google.

    Not to mention the ease of leaking/bribing information today when combined with google, cam cell phones, etc.

  • Fixed that for you (Score:3, Interesting)

    by mandelbr0t (1015855) on Sunday January 20 2008, @03:04AM (#22115412) Journal

    Online Crime Facilitates Political, Business Growth.

    Seriously, who profits from the stuff that makes the headlines? It sure isn't me; I'm only into grey-area piracy.

  • With all the whoohaa around hacking, phishing, cyber attacks and copyright infringement, I think it is very important to make sure when one talks about "Cyber Crime" there is a definite understanding of what exactly is being referred to.

    If that is not done, dangerous grounds are set for criminalizing millions, oh wait, the RIAA is already doing that...

    • Re:Good grief. (Score:5, Interesting)

      by Walt Dismal (534799) on Sunday January 20 2008, @12:15AM (#22114694)
      Indeed good grief. I saw an article some time ago noting that some Southern California gangs were infiltrating girlfriends into various financial processing institutions to steal credit card information, banking info, and so on. Even into the DMV. So there's certainly low-level activity. At one company I worked at, a crook got a job in the accounting department and somehow stole all the HR data, and some of that was used to get credit cards. How long before serious organized crime runs multiple active efforts for this? And how many Web commerce sites do criminal background checks on IT personnel?

      • Indeed good grief. I saw an article some time ago noting that some Southern California gangs were infiltrating girlfriends into various financial processing institutions to steal credit card information, banking info, and so on. Even into the DMV. So there's certainly low-level activity. At one company I worked at, a crook got a job in the accounting department and somehow stole all the HR data, and some of that was used to get credit cards. How long before serious organized crime runs multiple active efforts for this? And how many Web commerce sites do criminal background checks on IT personnel?

        The reason that this doesn't happen to a greater extent is because people can do math. The problem is that you can't steal enough to be worth more than keeping the job. There are still some people who do it, but most people who can get jobs giving them access to that information realize that the (risk+effort)/reward ratio of stealing that information is a lot higher than the (risk+effort)/reward ratio of just being a good employee.

        • I'm not talking about the multitude of honest workers. All it takes is one bad apple to do a lot of damage, to mix a metaphor. If a gang member steals enough data for the gang to make a lot of money using even just 500 employees' personal data, it can be far more than a low-wage job pays, and the economics are attractive to the gang. Besides, few thieves would be there long enough to collect retirement benefits. The idea in a lot of low-end crime is work as little as you can, make some easy money, then spli

    • Do You See The Common Thread Here? (Score:5, Insightful)

      by Jeremiah Cornelius (137) on Sunday January 20 2008, @12:17AM (#22114706) Homepage Journal

      This is just like CIA Claims Cyber Attackers Blacked Out Cities [slashdot.org] Do you see the common thread here? Same SANS "expert", too. The guy who gave CIA props for their "disclosure". I remember when SANS was a good, technical security training and education outfit. Now they are on the Richard Clarke / Howard Schmidt CyberTerror disinformation campaign. I would doubt the spook "creds" - if you'd call 'em that - of Alan Paller. The worst theft and correlation of personal data is an ongoing effort by the state - with the telcos CA-CHING! Billing all the while. The crooks and Terra-ists are a joke in comparison. T'rists didn't "lose" several BILLION US dollars in small, unmarked bills in Iraq.

      Who loses track of that kind of money? No one. Mistakes aren't made like that. Plans are. But we're supposed to be afraid of teh Internet now. Why? Cos' if we didn't have the 'net, we wouldn't know about that missing cash - or the validity of Operations MOCKINGBIRD, MKUltra, Northwoods, etc.

      AirTran? This is a great outfit [msn.com]!

      • While by no means perfect, the folks in the government are generally attempting to carry out the law of the land, as derived from the Constitution and obfuscated by the mound of subsequent documents.
        Reform, as with a really nasty codebase, is a matter of simplification.
        Which, as recent attempts to improve some sacred-cow entitlements shows, is a mother of a challenge.
        • The "Government" is not any one thing - generally. Specifically, there are aspects of the US Government that actively resist and subvert the interest of the American people.

          In fact the "government" is not trying to carry out the law of the land - but rather to use law as an instrument of power. The Government would abolish private, reserve currency, were it "desperately attempting, against all odds, trying to sensibly enforce the bogglingly complex and conflicted laws of the land." The argument is disinge

          • This "Government" - including the highest courts in the judiciary - have recently held forth on the proposition, that for legal purposes, prisoners in extra-judicial detention by the military and executive agencies are not "persons".

            Therefore, they are not afforded Constitutional guarantees for persons.

            Simultaneously, the rights of corporations as 'persons' for First Amendment protections - among others - is upheld.

            What is wrong with this picture?

            If you try and rationalise this situation, you are put in the

            • KSM was a looney, who admitted to being the man in the moon, once sufficiently tortured.

              If justice as persons is not universal, it is a fiction.

              • If justice as persons is not universal, it is a fiction.

                Sweet, sweet bumper sticker.
                Beyond the theological point, in reality, the difference between this theory and practice is greater in practice than in theory.
                Who gets to define symbols like 'justice', 'universal', and 'fiction' is one powerful bloke.
                Would that one could set an eternal champignon such as yourself up as POTUS, just to get your reaction to the negative feedback of even the simplest acts. ;)

            • The front page again illustrates "your" Government, struggling to do the best on your behalf:
              http://yro.slashdot.org/article.pl?sid=08/01/20/1747201 [slashdot.org]

              "We invoke Executive Privilege to protect our PetroCo sponsors, and the globalists destroying the native industrial economy. BTW: breath smoke and like it!"

              "The AP reports that the United States Environmental Protection Agency (EPA) has invoked executive privilege to justify withholding information in its response to a lawsuit. The state of California is challenging the agency's decision to block their attempt to curb the emissions from new cars and trucks. In response, the EPA has delivered documents requested by the Freedom of Information Act for the discovery phase of the lawsuit -- but the documents are heavily redacted. That is, the agency has revealed that it did spend many hours meeting to discuss the issue, but refuses to divulge the details or the outcomes of the meetings. Among the examples cited, 16 pages of a 43-page Powerpoint presentation are completely blank except for the page titles. An EPA spokesperson used language similar to other recent claims of executive privilege, citing 'the chilling effect that would occur if agency employees believed their frank and honest opinions and analysis expressed as part of assessing California's waiver request were to be disclosed in a broad setting.'"

              • By the way, I'm not exactly a government apologist here. Concentrated government power generates bureaucratic singularities that could out-suck a black hole.
                Less is more.
                The chief point I want to make is that there are copious smart, dedicated individuals in the government, who, though arguably misguided, are making a sincere best effort. The task of the electorate is to have the courage to vote in some wiser leadership.

      • It boggles the imagination (Score:4, Interesting)

        by penix1 (722987) on Sunday January 20 2008, @12:41AM (#22114810) Homepage
        The morons that put critical data / control on outward facing servers deserve the hosing they get. Who in their right mind thinks it is a good idea to put a power station's control on a server that is even connected to the Internet? That is just the stupidest thing I have ever read.

        I am more concerned about who they give physical access to the data / hardware are. All it takes is one vengeful employee and a thumb drive to lose very sensitive data. Worse, many companies that do lose data won't report the breach unless it involves a threat of lawsuit by irate customers. Then they will report it grudgingly and then only after days or even weeks and months have passed. Plenty of time for massive damage to be done.

        • More powerful organized crime (Score:4, Informative)

          by JavaRob (28971) on Sunday January 20 2008, @06:11AM (#22115922) Homepage Journal

          The morons that put critical data / control on outward facing servers deserve the hosing they get. [...] I am more concerned about who they give physical access to the data / hardware are. All it takes is one vengeful employee and a thumb drive to lose very sensitive data.
          These are both examples where there's at least something individual companies can do about it internally.

          Personally, I was extremely unsettled a few years ago when the spammer powers-that-be decided they wanted BlueSecurity shut down [washingtonpost.com], and a bunch of DNS servers, Tucows and 4 other hosting providers, and SixApart/LiveJournal/TypePad [wired.com] fell as collateral damage.

          Is that not *scarier* for business? Let's see -- I'm free to conduct my business... as long as I don't step on any toes in the organized crime world. 'Cause if I do, they're shutting me down whenever they feel like it, and there's not a damned thing I (or the supposed "protection" of the law) can do about it.

          And of course, no power, once it exists, goes unused for very long. I see more and more stories about botnets used for extortion -- which is a bit trickier to carry out, since it's tough to get paid without a money trail, and law enforcement has more experience dealing with that -- but it's just another example. If they just want to squelch my business, it's incredibly easy.

          [Addendum: oh look... the article points to cyber espionage as #3 in the SANS institute's top 10 threats of 2008 [sans.org]; botnets are #2]

      • Re: (Score:3, Interesting)

        by OldHawk777 (19923) *
        Old saying; "Two coincidences indicate intention."

        The flaming-feuer Bush, staff, congress, senate, CIA, FBI, NSA, TelCo, OilCo, InsureCo ... have been totally coincidental for over six years now, blatantly conspicuous, overtly obvious ... to all US Citizens ... except for the mentally/emotionally dogma-blinded sick, many intelligent marginally-literate US Citizens intentional left behind over decades, and the very respectable simple minded.

        The CIA just wants a domino-theory cold-war budget. What clueless Ge

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2009 Geeknet, Inc.