Professional Documents
Culture Documents
The world we are in today is all about Information Technology (IT) because we are in the age of Information Technology and the people with the right information, with proper way of disseminate this information and processing them is considered as the most successful. Information technology is the transfer of information using telecommunication and microbased computer system. Nowadays, the computer has replaced manual records, and the fraudulent input document has been substituted by manipulating data held in a computer system. This manipulation does not need to be sophisticated. Computers have become the mainstay of business and government processes. Business has been using them for years and in most countries, there are drives towards electronic or joined up government. This is to allow the people to access government services from their desktop in their own home. Cybercrime, like every digital industry, is outsourcing. Though the U.S. still produces more malware, spam and viruses than any country in the world, illicit IT jobs are increasingly scattered across an anarchic and international Internet, where labor is cheap, legitimate IT jobs are scarce and scammers are insulated from the laws that protect their victims by thousands of miles. As Thomas Friedman might say, the criminal underworld is flat. The statistics that have been obtained and reported about demonstrate the seriousness Internet crimes in the world. Just the "phishing" emails mentioned in a previous paragraph produce one billion dollars for their perpetrators (Dalton 1). In a FBI survey in early 2004, 90 percent of the 500 companies surveyed reported a security breach and 80 percent of those suffered a financial loss (Fisher 22). A national statistic in 2003 stated that four billion dollars in credit card fraud are lost each year. Only two percent of credit card transactions take place over the Internet but fifty percent of the four billion, mentioned before, are from the transaction online (Burden and Palmer 5). All these finding are just an illustration of the misuse of the Internet and a reason why Internet crime has to be slowed down. Internet crime is crime committed on the Internet, using the Internet and by means of the Internet.
Computer crime is a general term that embraces such crimes as phishing, credit card frauds, bank robbery, illegal downloading, industrial espionage, child pornography, kidnapping children via chat rooms, scams, cyberterrorism, creation and/or distribution of viruses, Spam and so on. All such crimes are computer related and facilitated crimes. With the evolution of the Internet, along came another revolution of crime where the perpetrators commit acts of crime and wrongdoing on the World Wide Web. Internet crime takes many faces and is committed in diverse fashions. The number of users and their diversity in their makeup has exposed the Internet to everyone. Some criminals in the Internet have grown up understanding this superhighway of information, unlike the older generation of users. This is why Internet crime has now become a growing problem in the United States. Some crimes committed on the Internet have been exposed to the world and some remain a mystery up until they are perpetrated against someone or some company. The different types of Internet crime vary in their design and how easily they are able to be committed. Internet crimes can be separated into two different categories. There are crimes that are only committed while being on the Internet and are created exclusively because of the World Wide Web. The typical crimes in criminal history are now being brought to a whole different level of innovation and ingenuity. Such new crimes devoted to the Internet are email phishing, hijacking domain names, virus immistion, and cyber vandalism. A couple of these crimes are activities that have been exposed and introduced into the world. People have been trying to solve virus problems by installing virus protection software and other software that can protect their computers. Other crimes such as email phishing are not as known to the public until an individual receives one of these fraudulent emails. These emails are cover faced by the illusion that the email is from your bank or another bank. When a person reads the email he/she is informed of a problem with he/she personal account or another individual wants to send the person some of their money and deposit it directly into their account. The email asks for your personal account information and when a person gives this information away, they are financing the work of a criminal.
According to Oxford Advance Learners dictionary (2001), crime is the activities that involve breaking the law or illegal act or activities that can be punished by law. Computer crime has been defined as the act of stealing or misusing the computer hardware or software. The larger the organization, the more they make use of computers for their dayto-day activities and more likely it is that someone is out there to commit a crime. Computer crimes were committed for many reasons, some which are rational, others of which may make no sense to the observer. There are those who will steal under the best of employment circumstances. Other would not steal even if they were the worst treated employees in the world. This is dependent on individual character. Olawepo (1999) observed that it is against the backdrop that management of computerized organizations should address all the energy at disposal, the issue of detection and preventing computer related crimes. According to a Symantec report at the end of 2006, Beijing is now home to the world's largest collection of malware-infected computers, nearly 5 percent of the world's total. Research by the security company Sophos in April showed that China has overtaken the U.S. in hosting Web pages that secretly install malicious programs on computers to steal private information or send spam e-mails. And another report from Sophos earlier that month showed that Europe produces more spam than any other continent; one Polish Internet service provider alone produces fully 5 percent of the world's spam. Finally, the growing danger from crimes committed against computers, or against information store on computers, is beginning to claim attention in national capitals. The existing laws are likely to be unenforceable against such crimes in most countries around the world, especially Nigeria. This lack of legal protection means that businesses and governments must rely solely on technical measures to protect themselves from those who would steal, deny access to, or destroy valuable information.
Conventional crimes like Forgery, extortion, kidnapping etc. are being committed with the help of computers. New generation is growing up with computers. MOST IMPORTANT- Monetary transactions are moving on to the IINTERNET.
which started in 1995. This standard consists of two basic parts. BS 7799 part 1 and BS 7799 part 2 both of which were created by (British Standards Institute) BSI. Recently this standard has become ISO 27001. The National Institute of Standards and Technology (NIST) have released several special papers addressing cyber security. Three of these special papers are very relevant to cyber security: the 800-12 titled Computer Security Handbook; 800-14 titled Accepted.
Cyber crime can be done in many ways. Some of them are following:-
2.1. Hacking
Hacking in simple terms means illegal intrusion into a computer system without the permission of the computer owner/user. There is an equivalent term to hacking i.e. cracking, but from Indian Laws perspective there is no difference between the term hacking and cracking. Every act committed towards breaking into a computer and/or network is hacking. Hackers write or use ready-made computer programs to attack the target computer. They possess the desire to destruct and they get the kick out of such destruction. Some hackers hack for personal monetary gains, such as to stealing the credit card information, transferring money from various bank accounts to their own account followed by withdrawal of money. They extort money from some corporate giant threatening him to publish the stolen information which is critical in nature.
2.1.2 Every act committed towards breaking into a computer and/or network is hacking. Hackers write or use ready-made computer programs to attack the target computer. They possess the desire to destruct and they get the kick out of such destruction. Some hackers hack for personal monetary gains, such as to stealing the credit card information, transferring money from various bank accounts to their own account followed by withdrawal of money. They extort money from some corporate giant threatening him to publish the stolen information, which is critical in nature. Government websites are the hot targets of the hackers due to the press coverage they receive. 2.1.3. About Hackers, Crackers and Phreaks The original meaning of the word "hack" was born at MIT, and originally meant an elegant, witty or inspired way of doing almost anything. Now the meaning has changed to become something associated with the breaking into or harming of any kind of computer or telecommunications system. Purists claim that those who break into computer systems should be properly called "crackers" and those targeting phones should be known as "phreaks".
The diagram below will give you an idea of how the attack happens:-
or a business doesn't report the numbers of computers using software, it is a form of software piracy. Being convicted of software piracy often involves jail time and large fines. The software industry plays a leading role in creating products that have vastly improved our lives and work environment. Unfortunately, software theft, or piracy, has had a negative impact on the global marketplace and the ability to create new products. Copying in the workplace, counterfeiting and various forms of illegal distribution cost the Asia Pacific region US$11.6 billion in 2006 (Fourth Annual BSA and IDC Global Software Piracy Study. This study covers all packaged software that runs on personal computers, including desktops, laptops, and ultra-portables, including operating systems, systems software such as databases and security packages, business applications, and consumer applications such as PC games, personal finance, and reference software. The study does not include other types of software such as that which runs on servers or mainframes or software sold as a service). Furthermore, the unauthorized electronic distribution and sale of copyrighted works over the Internet threatens to make these problems seem almost quaint by comparison. Legal and cultural frameworks to protect creative works online, including computer software, must be identified and built to encourage creativity and growth. Example of software piracy are as follows: End user copying - Friends loaning disks to each other, or organizations underreporting the number of software installations they have made. Hard disk loading Hard disk vendors loads pirated software Counterfeiting - large-scale duplication and distribution of illegally copied software. Illegal downloads from the Internet - By intrusion, cracking serial numbers etc.
virus passes from person to person. Malicious software that attaches itself to other software. (virus, worms, Trojan Horse, Time bomb, Logic Bomb, Rabbit and Bacterium are the malicious. Viruses can also contain instructions that cause damage or annoyance; the combination of possibly damaging code with the ability to spread is what makes viruses a considerable concern. Viruses can often spread without any readily visible symptoms. A virus can start on eventdriven effects (for example, triggered after a specific number of executions), time-driven effects (triggered on a specific date, such as Friday the 13th) or can occur at random. Typical action of virus are as follows: Display a message to prompt an action which may set of the virus Erase files Scramble data on a hard disk Cause erratic screen behavior Halt the PC
2.5 Spoofing
10
Spoofing means a hacker logs-in to a computer illegally using a different identity than his own. He is able to do this by having previously obtained actual password. He creates a new identity by fooling the computer into thinking he is the genuine system operator. Hacker then takes control of the system.
Stalking may be followed by serious violent acts such as physical harm to the victim and the same has to be treated and viewed seriously. It all depends on the course of conduct of the stalker.
11
Cyber-stalking refers to the use of the Internet, e-mail, or other electronic communications device to stalk another person. It is a relatively new form of harassment, unfortunately, rising to alarming levels especially in big cities like Mumbai. 2.6.1 Who is a cyber stalker? A cyber stalker sends harassing or threatening electronic communication to the victim. Both kinds of stalkers online and offline - have desire to control the victims life. 2.6.2 How does a cyber stalker operate? 1. A typical cyber stalker collects all personal information about the victim such as name, family background, telephone numbers of residence and work place, daily routine of the victim, address of residence and place of work, date of birth etc. If the stalker is the victims acquaintances, he/ she has easy access to this information. If the stalker is a stranger, he/ she collects the information from internet resources such as various profiles, the victim may have filled in while opening chat or e-mail accounts or while signing an account with some website. 2. The stalker may post this information on any website related to sex-services or dating services, posing as if the victim is posting this information and invite the people to call the victim on her telephone numbers to have sexual services. A stalker even uses very filthy and obscene language to invite the interested persons. 3. People of all kind from nook and corner of the World, who come across this information, start calling the victim at her residence and/or work place, asking for sexual services or relationships. 4. Some stalkers subscribe the e-mail account of the victim to innumerable pornographic and sex sites, because of which victim starts receiving such kind of unsolicited e-mails. 5. Some stalkers keep on sending repeated e-mails asking for various kinds of favors or threaten the victim. 6. The stalkers follow their victim from message board to message board. They "hangout" on the same boards as their victim, many times posting notes to the victim, making sure the victim is aware that he/she is being followed. Many times 12
they will "flame" their victim (becoming argumentative, insulting) to get their attention. 7. Stalkers will almost always make contact with their victims through email. The letters may be loving, threatening, or sexually explicit. They will many times use multiple names when contacting the victim. 8. In extreme cases, the stalker becomes bold enough to contact victim via telephone to make calls to the victim to threaten, harass, or intimidate him/ her. Ultimately, the stalker is even known to track the victim to his/ her home. 2.6.3 When does cyber stalking happen? In many cases, the cyber stalker and the victim had a prior relationship, and the cyber stalking begins when the victim attempts to break off the relationship. However, there also have been many instances of cyber stalking by strangers. Given the enormous amount of personal information available through the Internet, a cyber stalker can easily locate private information about a potential victim with a few mouse clicks or keystrokes. The fact that cyber stalking does not involve physical contact may create the misperception that it is more benign than physical stalking. This is not necessarily true. As the Internet becomes an ever more integral part of our personal and professional lives, stalkers can take advantage of the ease of communications as well as increased access to personal information. In addition, the ease of use and non-confrontational, impersonal, and sometimes anonymous nature of Internet communications may remove disincentives to cyber stalking. Put another way, whereas a potential stalker may be unwilling or unable to confront a victim in person or on the telephone, he or she may have little hesitation sending harassing or threatening electronic communications to a victim. Finally, as with physical stalking, online harassment and threats may be a prelude to more serious behavior, including physical violence.
13
The net is a boon for people to conduct business effectively, very quickly. It saves businesses a lot of time, money and resources. Unfortunately, the net is also an open invitation to scamsters and fraudsters and online frauds are becoming increasingly rampant. Fraudsters create authentic looking websites that are actually nothing but a spoof. The purpose of these websites is to make the user enter personal information. This information is then used to access business and bank accounts. Fraudsters are increasingly turning to email to generate traffic to these websites. A lot of customers of financial institutions recently received such emails. Such emails usually contain a link to a spoof website and mislead users to enter User ids and passwords on the pretence that security details can be updated, or passwords changed. If you ever get an email containing an embedded link, and a request for you to enter secret details, treat it as suspicious. Do not input any sensitive information that might help provide access to your accounts, even if the page appears legitimate. No reputable company ever sends emails of this type.
Possible Criminal Uses of Usenet Distribution/Sale of pornographic material. Distribution/Sale of pirated softwares Distribution of Hacking Software Sale of Stolen credit card numbers Sale of Stolen Data/Stolen property.
14
phishing emails so that a pattern cannot be recognized. An individual can do their best to protect themselves simply by being cautious and careful. Internet users need to watch suspicious emails, use unique passwords, and run anti-virus and anti-spyware software. Do not open any email or run programs from unknown sources. The most important way to protect your personal information from being compromised by cybercrime is to protect your computer. Always use a firewall. Also, always use one or two anti-spyware programs in addition to your anti-virus software, and keep them up to date. Beyond protection of your computer, you can take action to protect yourself, too. First, don't reply to an email or pop-up message that asks for personal or financial information, and don't click on links in the message. If you want to go to a bank or business's Web site, type the Web address into your browser yourself, and if you want to reach organization with which you do business, call the number on your financial statement. A final protection mechanism to consider -- some kind of personal security device separate from your PC that is part of your login process to the Web sites you use. This might be a card or USB token that uses smart card technology to safely identify you and make sure you are logging in to the real site.
should use content filtering software on PC to protect children from pornography, gambling, hate speech, drugs and alcohol.
Install software to establish time controls for use of limpets . allowing parents to see which site item children have visited. Be careful before revealing any personal information such as age, marital status, or financial information while chatting. Never post photographs of your children on web sites or newsgroups that are available to the public. Consider using a fake name, avoid listing your childs name and E-mail address in any public directories and profiles, and find out about your Internet Service Providers privacy policies and exercise your options for how your personal information may be used.
Get to know the Internet and any services your child uses. If you dont know how to log on, get your child to show you. Ask your child show you what he or she does online, and familiarize yourself with all the things that you can do online.
Never allow a child to arrange a face-to-face meeting with another computer user without your permission. If a meeting is arranged, make the first one in a public place, and be sure to accompany your child.
Do not respond to messages or bulletin board items that are suggestive, obscene, belligerent, threatening, or make you feel uncomfortable. Ask your children to tell you if they respond to such messages advice them not to do that. If you or your child receives a message that is harassing, of a sexual nature, or threatening, forward a copy of the message to your ISP, and ask for their assistance.
Instruct your child not to click on any links that are contained in E-mail from persons they dont know. Such links could lead to sexually explicit or otherwise inappropriate web sites.
Remember that people online may not be who they seem. Because you cant see or even hear the person it would be easy for someone to misrepresent him- or herself. Thus, someone indicating that "she" is a "12-year-old girl" could in reality be a 40year-old man. 17
Remember that everything you read online may not be true. Any offer thats "too good to be true" probably is. Be very careful about any offers that involve you coming to a meeting, having someone visit your house, or sending money or credit card information.
A childs excessive use of online services or the Internet, especially late at night, may be a clue that there is a potential problem. Remember that personal computers and online services should not be used as electronic babysitters.
Be sure to make Internet surfing a family activity. Consider keeping the computer in a family room rather than the childs bedroom. Get to know their "online friends" just as you get to know all of their other friends.
18
Don't open e-mail attachments unless you know the source. Attachments, especially executables (those having .exe extension) can be dangerous. Confirm the site you are doing business with. Secure yourself against "WebSpoofing". Do not go to websites from email links. Create passwords containing at least 8 digits. They should not be dictionary words. They should combine upper and lower case characters. Use different passwords for different websites. Send credit card information only to secure sites. Use a security program that gives you control over "Cookies" that send information back to websites. Letting all cookies in without monitoring them could be risky.
19
Administrators have access to all files and data. Therefore, one must be mindful of who is guarding the guards Roles for security should be defined, documented, and implemented for both your company and external contractors. Establish a security awareness program for all users. Content should be communicated in non-technical terms. This could include briefings, posters, clauses in employee contracts, security awareness days etc
Implement security training for technical staff that is focused on the security controls for their particular technical areas Maintain logs of all possible activities that may occur on your system. System records must note who was using the system, when, for how long, deletions etc. User accounts should not be shared. User authorization should be mandatory. Employees should only be able to see information that they are authorized to see. Employee user accounts must be disabled or removed when no longer needed. Example: in case an employee leaves the company. Ensure network security from external sources by installing firewalls and intrusion detection systems. Allow remote access to employees only through secure communication channels like SSL or VPN Install antivirus software on all desktops and servers. Buy Anti-Virus software solutions that allow real time upgrading of systems with anti-virus patches. Create a data backup and disaster recovery plan in case of unforeseen natural calamities. Ensure back-up procedures are in place and tested Ensure back-up procedures include all your critical as well as back office data such as finance, payroll etc. Incident response is the ability to identify, evaluate, raise and address negative computer related security events. Incase of an incident, do not panic, and continue to save logs. Incident response - Take a backup of the affected system and notify the authorities. 20
21
Orkut. Airtel gives police the name of an innocent person using a different IP address. How two IP addresses could be mixed-up in a sensitive police case is anyones guess. An innocent Indian, Lakshmana Kailash K, is arrested in Bangalore and thrown in jail for 3 weeks. Eventually, his innocence is proved and he is released in Oct, 2007. A number of news media report this incident. American citizen and India lover Christopher Soghoian (home page http://www.dubfire.net/chris/) studies Informatics at Indiana University and researches/writes about security, privacy and computer crime. Christopher does an excellent article on this topic for the blogs at respected tech media group CNET. Like all good writers, Christopher Soghoian, gives Google, India a list of questions so that he can give a balanced perspective to the millions of CNET readers.
4. Does Google feel in any way responsible for the man's accidental arrest and jailing? 5. Speaking more generally, without going into the specifics of this incident...Has Google ever in the past handed over user information (including logs) to Indian law enforcement/authorities without a court order/search warrant? 6. In this case, the crime the man was accused of (defaming a 300 year old historical figure) does not exist in the US. Will Google conform to the laws of each country it does business in, or will it defer to American concepts of freedom of speech and the press? 7. Does Google reveal information to other countries for "crimes" that would not normally be an illegal in the US? For example, the ip addresses of people in Saudi Arabia and other conservative Muslim countries who search for adult, consensual pornography?
23
the Assistant Commissioner of Police (Financial & Cyber crime unit) demanding that an amount of 20 crores be paid as damages. The software engineer has also sent a copy of the legal notice to the National Human rights commission. Lakshmana had spent a harrowing 50 days in police custody accused of a crime he had never committed just because an IP address sought by the police was wrongly supplied by Bharti Airtel. The legal notice smacks of his anger with the police and judiciary making a mockery of the rights of an individual and the pitiable conditions of the Yerwada jail where he was detained with a number of hardened criminals. He is reported to have been beaten by a lathi and asked to use the same bowl to eat and to use in the toilet.
came to light when a cheque discounted by him with the Andhra Bank for Rs 1.73 million bounced. Mohan had pledged with Andhra Bank the copy of a bond certificate purportedly issued by Midland Bank, Sheffields, London stating that a term deposit of 12.5 million was held in his name.
general chatting facility is provided by some websites like MIRC and ICQ. Where person can easily chat without disclosing his true identity. The friend of husband also encouraged this chatters to speak in slang language to Ms. Kohli.
In one case, a foreigner who had been residing in Simla, India for almost thirty years wanted to avail of a scheme introduced by the Simla Housing Board to buy land at lower rates. When he made an application it was rejected on the grounds that the scheme was available only for citizens of India. He decided to take his revenge. Consequently he sent thousands of mails to the Simla Housing Board and repeatedly kept sending e-mails till their servers crashed.
case into his own hands and the police under his directions raided and arrested Krishan Kumar under sections 379, 411, 34 of IPC and section 25 of the Indian Telegraph Act. In another case, the Economic Offences Wing of Delhi Police arrested a computer engineer who got hold of the password of an Internet user, accessed the computer and stole 107 hours of Internet time from the other persons account. He was booked for the crime by a Delhi court during May 2000.
4.19 SBI arm wins cybersquatting case - Peeyush Agnihotri - Tribune News Service
Chandigarh,24August SBI Card and Payment Services Private Limited, the credit card arm of the State Bank of India (SBI), received a shot in the arm when it won a case of cybersquatting against Domain Active Pty Limited, an Australian dotcom company. The judgement, a notification of which was received earlier this week, was delivered by the administrative tribunal constituted by the World Intellectual Property Organisation (WIPO), Geneva. Established in 1998, SBI Card and Payment Services Private Limited is a joint venture between GE Capital Services, the largest issuer of private label credit cards in the world, and the State Bank of India (SBI), the largest Indian bank. SBI holds 60 per cent stake while GE 40 per cent. The venture offers a range of credit cards SBI Classic Card, SBI Gold Card, SBI International Card, SBI Doctors Card. It also has a number of city affinity cards (SBI Kolkata Card, SBI Mumbai Card, SBI Delhi Card, SBI Hyderabad Card, SBI Bangalore Card), commanding sales of over one million. It all began when Domain Active Pty Limited, an Australian entity, floated a website on the domain name, www.sbicards.com, and even tricked financial bigtime entities like Chase Manhattan into advertising on the site. The SBI arm, which had already registered the domain name with Fabulous.Com Pty. Ltd, lodged a complaint on March 16 at the World Intellectual Property Organisation (WIPO), Geneva. 28
The WIPO Administrative Panel found that the Australian entitys website could have attracted potential attention from the public because of its affiliation with SBI Cards products and services. At the same time it created a risk of confusion with the products/services and trademark as to the source, sponsorship, affiliation or endorsement of its website. The panels independent verification showed that the current use of the Australian firms website, www.sbicards.com, was practically the same. The panel held that the respondent (Domain Active Pty Limited) has registered the disputed domain name in bad faith. Talking exclusively to The Tribune from New Delhi, Mr Rodney D. Ryder, who represented SBI Cards, said that it was a clear case of cyber fraud and cybersquatting. The judgement has come as big relief. No penalty could, however, be imposed on the errant firm since at WIPO we have not been able to evolve a consensus on what should be the proper damage/compensation amount as the cases involve the jurisdiction clause, he said.
services with credit card details that he found on the Net. He was both the buyer and the seller.Calls to Amit's house in Lucknow went unanswered. Legal notices came back unclaimed. Amit had disappeared without a trace.
Armed with all requisite data to hack the bank ATMs, the gang started its systematic looting. Apparently, Manwani and many others of his ilk entered into a deal with the gang behind the site and could purchase any amount of data, of course on certain terms, or simply enter into a deal on a booty-sharing basis. On receipt of large-scale complaints from the billed credit card users and banks in the United States, the FBI started an investigation into the affair and also alerted the CBI in New Delhi that the international gang had developed some links in India too. Manwani has since been enlarged on bail after interrogation by the CBI. But the city police believe that this is the beginning of the end of a major cyber crime.
relationship. He also gave him another friend Ruchira Senguptas e-mail ID which was in fact his second bogus address. When Ninawe mailed at the other ID he was shocked to learn that Mitra had died. Then Mitra began the emotional blackmail by calling up Abu Dhabi to say that police here were searching for Ninawe. Ninawe panicked on hearing the news and asked Mitra to arrange for a good advocate for his defence. Ninawe even deposited a few lakh in the bank as advocate fees. Mitra even sent e-mails as high court and police officials to extort more money. Ninawe finally came down to Mumbai to lodge a police case.
32
"With the help of computers, the accused took the people for a ride," the Vijayawada police commissioner pointed out. Mohan, using the Internet and forged documents, allegedly cheated banks and several persons to the tune of 60 million rupees. Kola Mohan was arrested by the Vijayawada city police on Monday in connection with cases of fraud and forgery registered against him. He was remanded to judicial custody till December 13 by Fifth Metropolitan Magistrate K B Narsimhulu. He was shifted to the district jail at Gandhinagar in Vijayawada. Mohan was accused of cheating the Andhra Bank to the tune of Rs 1.73 million. By perpetrating the multi-million rupee fraud, Mohan has achieved the dubious distinction of allegedly committing the first and biggest cyber crime in Andhra. The state, incidentally is making rapid strides in information technology, thanks to the initiative of cyber-savvy Chief Minister N Chandrababu Naidu. A compulsive gambler who played cards regularly at high stakes in various clubs in the coastal city, Mohan told newsmen at the police commissioner's office at Vijayawada on Monday that he had lost as much as Rs 30 million in 1998 when a gambling syndicate led by a real estate dealer and a restaurant-owner cheated him. "I was on the look-out to make good the losses by hook or crook. During a visit to London, I learnt about the Euro lottery. I staked some money on it in vain. Then, I invented the story that I won the lottery. I created a website and an email address on the Internet with the address 'eurolottery@usa.net.' Whenever accessed, the site would name me as the beneficiary of the 12.5 million pound (that is, $ 19.8 million or Rs 840 million) Eurolottery," Kola Mohan recalled. A Telugu newspaper in Hyderabad received an email that a Telugu had won the Euro lottery. The website address was given for verification. The newspaper sent the query and got the "confirmation" since Kola Mohan had himself created and manipulated the website
told the agents to spice up their sales pitch for the client, Capital One Financial Services, by making false claims about free gifts and membership fees, according to Indian press reports. The scam even bypassed Wipros sophisticated call-monitoring system.
us, GM Marketing, Acme, Sandeep Kashyap said. Acme employs around 1,100 people, who will be affected by the firms move to Australia that will happen over the next eight months. Most of the 70 people in the Research and Development section will be the first to move. For the rest, the future is unclear. According to Acme, only a small manufacturing operation will remain in India, but they say they will take care of their employees and that their reason for leaving is simple. "The fact that the main accused has got bail and the others got a clean chit has disappointed us completely, Kashyap said. However, the lawyer for Sachidanand Patnaik says they are giving up too soon and that this trend could have dangerous repercussions. "If the reason they are leaving India is because the main accused has got bail, then it is contempt of court, Patnaik's lawyer, Vakul Sharma said. When people lost faith in the system in the past, there was little they could, outside of rallying against everything wrong with the world. However, today people have a choice. They can simply move on. But the question remains - will the system respond?
35
The PROTECT IP Act (Preventing Real Online Threats to Economic Creativity and Theft of Intellectual Property Act, or PIPA) is a proposed law with the stated goal of giving the US government and copyright holders additional tools to curb access to "rogue websites dedicated to infringing or counterfeit goods", especially those registered outside the U.S. The bill was introduced on May 12, 2011, by Senator Patrick Leahy (D-VT). The PROTECT IP Act is a re-write of the Combating Online Infringement and Counterfeits Act (COICA), which failed to pass in 2010. The PROTECT IP Act says that an "information location tool shall take technically feasible and reasonable measures, as expeditiously as possible, to remove or disable access to the Internet site associated with the domain name set forth in the order". In addition, it must delete all hyperlinks to the offending "Internet site".
The amended CFAA could now be used to prosecute those who transmitted "a program, information, code, or command to a computer or computer system" with the intent to cause damage to the computer or information in the computer or prevent the use of the system without the knowledge or the authorization of the owners of that computer. In addition, the law made it a crime to act "with reckless disregard of a substantial and unjustifiable risk" of damage or loss occurring.
Yet within the Patriot Act are important changes that will increase prosecutorial power in fighting computer crimes. Specifically, the Act references the Computer Fraud and Abuse Act (18 U.S.C. 1030) with both procedural and substantive changes that may significantly influence future prosecutions. There are also changes that will make it easier for law enforcement to investigate computer crimes. Although many changes speak to fighting terrorism and specifically cyberterrorism, the title and purpose of the Patriot Act are the only apparent limits to these modifications. As such, the statutory changes are likely to extend beyond these titles to include acts of fraud, identity theft, and other activities that are common forms of computer crimes. Some of the new procedural changes are permanent; however, lacking congressional action, some changes will expire under sunset provisions on December 31, 2005.
Chapter 6 CONCLUSION
Obviously computer crime is on the rise, but so is the awareness and ability to fight it. Law enforcement realizes that it is happening more often than it is reported and are doing there 40
best to improve existing laws and create new laws as appropriate. The problem is not with the awareness or the laws, but with actually reporting that a crime has occurred. Hopefully people will begin to realize that unless they report these crimes and get convictions, those committing computer crimes will continue to do so. While there is no silver bullet for dealing with cyber crime, it doesnt mean that we are completely helpless against it. The legal system is becoming more tech savvy and many law enforcement departments now have cyber crime units created specifically to deal with computer related crimes, and of course we now have laws that are specifically designed for computer related crime. While the existing laws are not perfect, and no law is, they are nonetheless a step in the right direction toward making the Internet a safer place for business, research and just casual use. As our reliance on computers and the Internet continues to grow, the importance of the laws that protect us from the cyber-criminals will continue to grow as well.
Chapter 7 REFRENCES
[1] http://bar.austlii.edu.au/au/other/crime/123.html [2] http://en.wikipedia.org/wiki/Computer_crime 41
[3] http://cybercellmumbai.gov.in/ [4] http://indiacyberlab.in/cybercrimes/stalking.htm [5] http://www.witsa.org/papers/McConnell-cybercrime.pdf [6] http://www.cyberlawclinic.org/casestudy.asp [7] http://satheeshgnair.blogspot.in/2009/06/selected-case-studies-on-cybercrime.html#Computer_Viruses_Worms_Trojan_
42