الجريمة اإللكرتونية يف املجتمع الخليجي وكيفية مواجهتها Cybercrimes in the Gulf Society and How to Tackle Them

Total Page:16

File Type:pdf, Size:1020Kb

الجريمة اإللكرتونية يف املجتمع الخليجي وكيفية مواجهتها Cybercrimes in the Gulf Society and How to Tackle Them مسابقة جائزة اﻷمير نايف بن عبدالعزيز للبحوث اﻷمنية لعام )2015م( الجريمة اﻹلكرتونية يف املجتمع الخليجي وكيفية مواجهتها Cybercrimes in the Gulf Society and How to Tackle Them إعـــــداد رامـــــــــــــي وحـــــــــــــيـد مـنـصــــــــــور باحـــــــث إســـتراتيجي في الشــــــئون اﻷمـــنـــية واﻻقتصـــــــــاد الســــــــياسـي -1- أ ت جملس التعاون لدول اخلليج العربية. اﻷمانة العامة 10 ج إ الجريمة اﻹلكترونية في المجتمع الخليجي وكيفية مواجهتها= cybercrimes in the Gulf:Society and how to tackle them إعداد رامي وحيد منصور ، البحرين . ـ الرياض : جملس التعاون لدول اخلليج العربية ، اﻷمانة العامة؛ 2016م. 286 ص ؛ 24 سم الرقم املوحد ملطبوعات اجمللس : 0531 / 091 / ح / ك/ 2016م. اجلرائم اﻹلكرتونية / / جرائم املعلومات / / شبكات احلواسيب / / القوانني واللوائح / / اجملتمع / مكافحة اجلرائم / / اجلرائم احلاسوبية / / دول جملس التعاون لدول اخلليج العربية. -2- قائمة املحتويات قائمة احملتويات .......................................................................................................... 3 قائمــة اﻷشــكال ........................................................................................................10 مقدمــة الباحــث ........................................................................................................15 مقدمة الدراســة .........................................................................................................21 الفصل التمهيدي )اﻹطار النظري للدراسة( موضوع الدراســة ...................................................................................................... 29 إشــكاليات الدراســة ................................................................................................. 30 أهــداف الدراســة ..................................................................................................... 32 أمهيــة الدراســة ......................................................................................................... 34 منهجيــة الدراســة ..................................................................................................... 37 أدوات الدراســة ....................................................................................................... 38 فرضيــات الدراســة وتســاؤﻻهتا .................................................................................... 41 الدراســات الســابقة..................................................................................................................... 43 الفصل اﻷول )اﻷمن املعلوماتي والجرائم اﻹلكرتونية( 1/1 مفهــوم أمــن املعلومــات .......................................................................................51 1/2 ماهيــة اجلرميــة اﻹلكرتونيــة واجلرائــم املرتكبــة علــى اﻹنرتنــت ........................................52 1/2/1 اجلرائم املرتكبة على اﻹنرتنت على أســاس وســيلة اﻹرتكاب .................53 1/2/2 اجلرائم املرتكبة على اﻹنرتنت على أساس توافر املعرفة بتقنية املعلومات .54 1/2/3 اجلرائــم املرتكبــة علــى اﻹنرتنــت علــى أســاس موضــوع اجلرميــة ..........................55 1/2/4 دمــج ومشوليــة اجلرائــم املرتكبــة علــى اﻹنرتنــت .............................................56 -3- 1/3 أمناط اجلرمية اﻹلكرتونية وخماطرها ......................................................................57 1/3/1 جرائم إلكرتونية متعلقة بسرية البيانات ونظم التشغيل احلاسوبية ..........58 1/3/1/1 التجسس على البيانات .................................................59 1/3/1/2 النفاذ غري القانوين )القرصنة والتسلل( .............................59 1/3/1/3 اﻹعرتاض غري القانوين ...................................................60 1/3/1/4 التدخل يف البيانات .......................................................61 1/3/1/5 التدخل يف النظام ..........................................................62 1/3/2 جرائم إلكرتونية متعلقة باحملتوى .......................................................62 1/3/2/1 املواد املثرية جسيا ًأو املواد اﻹباحية .................................63 1/3/2/2 العنصرية واحلض على الكراهية والدعوة للعنف .................64 1/3/2/3 املقامرة غري القانونية واﻷلعاب املتاحة على اﻹنرتنت .........65 1/3/2/4 السب والقذف واملعلومات املغلوطة ................................67 1/3/2/5 الرسائل اﻹقتحامية وما يتعلق هبا من هتديدات .................67 1/3/2/6 اﻷشكال اﻵخرى للمحتوى غري القانوين .........................68 1/3/3 جرائم إلكرتونية متعلقة حبقوق امللكية الفكرية والعﻻمات التجارية .....69 1/3/3/1 اجلرائــم املتعلقــة حبقــوق املؤلــف .........................................69 1/3/3/2 اجلرائم املتعلقة بالعﻻمات التجارية ..................................70 1/3/4 جرائم إلكرتونية متعلقة باحلواسيب ...................................................71 1/3/4/1 اﻻحتيال احلاســويب .........................................................71 1/3/4/2 التزييف احلاســويب ...........................................................72 1/3/4/3 ســرقة اهلويــة ...................................................................73 1/3/4/4 إســاءة إســتخدام اﻷجهــزة ...............................................74 1/3/5 اجلرائم املنظمة املشرتكة ....................................................................75 1/3/5/1 اﻹرهاب اﻹلكرتوين .......................................................75 -4- 1/3/5/2 غسل اﻷموال اﻹلكرتوين ................................................76 1/3/5/3 التصيد اﻻحتيايل ...........................................................77 1/4 السوق السوداء للجرائم اﻹلكرتونية على اﻹنرتنت ...............................................87 1/5 ثورة اﻹنرتنت 0.2 وحروب اجليل الرابع .............................................................81 1/5/1 إنرتنت 0.2 ..................................................................................83 1/5/2 احلرب اﻹلكرتونية ...........................................................................85 1/6 اجلناة اﻹلكرتونيني وقراصنة الفضاء اﻹلكرتوين .....................................................86 1/6/1 جمموعات املخرتقني العاملية على اﻹنرتنت .........................................88 الفصل الثاني )املكافحة اﻷمنية الشاملة يف ظل النهج واﻹستجابات( 2/1 النهج الدولية ...................................................................................................95 2/1/1 جمموعة الثمانية ..............................................................................95 2/1/2 اﻷمم املتحدة .................................................................................97 2/1/3 اﻻحتاد الدويل لﻹتصاﻻت ...............................................................98 2/1/4 جملــس أوروبــا ................................................................................100 2/2 النهج اﻹقليمية .............................................................................................102 2/2/1 اﻻحتاد اﻷورويب ............................................................................102 2/2/2 منظمة التعاون والتنمية يف امليدان اﻹقتصادي .................................103 2/2/3 جمموعة التعاون اﻹقتصادي يف آسياواحمليط اهلادي ...........................104 2/2/4 دول الكومنولــث ..........................................................................105 2/2/5 جامعة الدول العربية وجملس التعاون اخلليجي .................................106 2/2/6 منظمة الدول اﻷمريكية .................................................................107 2/3 اﻹستجابة القانونية والنهج التشريعية الدولية .....................................................108 2/3/1 القانون اجلنائي املوضوعي ..............................................................108 -5- 2/3/1/1 النفاذ غري القانوين ......................................................108 2/3/1/2 التجسس على البيانات ...............................................110 2/3/1/3 اﻻعرتاض غري القانوين .................................................112 2/3/1/4 التدخل يف البيانات......................................................113 2/3/1/5 التداخــل يف النظــام ............................................................113 2/3/1/6 املواد املثرية جنسياً .......................................................114 2/3/1/7 استعمال اﻷطفال يف املواد الفاضحة ............................114 2/3/1/8 حد سن القاصر .........................................................115 2/3/1/9 جترمي حيازة املواد الفاضحة لﻵطفال .............................115 2/3/1/10 خطاب الكراهية العنصرية .........................................116 2/3/1/11 اجلرائم الدينية ..........................................................116 2/3/1/12 القذف والتشهري ......................................................116 2/3/1/13 املقامرة غري القانونية ..............................................................117 2/3/1/14 الرسائل اﻹقتحامية ...................................................117 2/3/1/15 إساءة إستخدام اﻷجهزة ...........................................119 2/3/1/16 التزوير املتصل باحلاسوب ..........................................119 2/3/1/17 سرقة اهلوية ..............................................................120 2/3/1/18 الغش املتصل باحلاسوب ...........................................121 2/3/1/19 جرائم حقوق الطبع ..................................................121 2/3/2 القانون اﻹجرائي ..........................................................................122 2/3/2/1 التحقيقات املتصلة باحلاسوب واﻹنرتنت )الطب الشرعي احلاسويب( ...................................................................................123 2/3/2/2 الضمانات .................................................................125 2/3/2/3 احلفظ العاجل لبيانات احلاسوب املخزنة واﻹفصاح عنها )التجميد السريع( .......................................................................126 -6- 2/3/2/4 إستباق البيانات .........................................................127 2/3/2/5 التفتيش والضبط .........................................................128 2/3/2/6 أمر اﻹبراز ..................................................................128
Recommended publications
  • An Information Security Framework for Web Services in Enterprise Networks
    AN INFORMATION SECURITY FRAMEWORK FOR WEB SERVICES IN ENTERPRISE NETWORKS A THESIS SUBMITTED TO THE GRADUATE SCHOOL OF INFORMATICS THE MIDDLE EAST TECHNICAL UNIVERSITY BY BAHADIR GÖKHAN SARIKOZ IN PARTIAL FULFILLMENT OF THE REQUIREMENTS FOR THE DEGREE OF MASTER OF SCIENCE IN THE DEPARTMENT OF INFORMATION SYSTEM JANUARY 2015 AN INFORMATION SECURITY FRAMEWORK FOR WEB SERVICES IN ENTERPRISE NETWORKS Submitted by Bahadır Gökhan Sarıkoz in partial fulfilment of the requirements for the degree of Master of Science in Information Systems, Middle East Technical University by, Prof. Dr. Nazife Baykal Director, Informatics Institute Prof. Dr. Yasemin Yardımcı Çetin Head of Department, Information Systems Assoc. Prof. Dr. Banu Günel Supervisor, Information Systems, METU Examining Committee Members: Prof. Dr. Nazife Baykal IS, METU Assoc. Prof. Dr. Banu Günel IS, METU Prof. Dr. Şeref Sağıroğlu CENG, Gazi University Assist. Prof. Dr. Pekin Erhan Eren IS, METU Dr. Buğra Karabey META, Microsoft Date: June 21, 2015 I hereby declare that all information in this document has been obtained and presented in accordance with academic rules and ethical conduct. I also declare that, as required by these rules and conduct, I have fully cited and referenced all material and results that are not original to this work. Name, Surname: Bahadır Gökhan Sarıkoz Signature: iii ABSTRACT AN INFORMATION SECURITY FRAMEWORK FOR WEB SERVICES IN ENTERPRISE NETWORKS Sarıkoz, Bahadır Gökhan M.S., Department of Information Systems Keywords: Web Services, Cyber Security, Security Modeling, Security Controls, Security Measurement. Supervisor: Assoc. Prof. Dr. Banu GÜNEL January 2015, 197 pages Web Service, an open standard based on existing Internet protocols, provides a flexible solution to web application integration.
    [Show full text]
  • United States V. Auernheimer and the Sixth Amendment Right to Be Tried in the District in Which the Alleged Crime Was Committed
    University of Denver Criminal Law Review Volume 6 Issue 1 Article 3 January 2016 Fundamental Since Our Country's Founding: United States v. Auernheimer and the Sixth Amendment Right to Be Tried in the District in Which the Alleged Crime was Committed Paul Mogin Follow this and additional works at: https://digitalcommons.du.edu/crimlawrev Part of the Criminal Law Commons Recommended Citation Paul Mogin, Fundamental Since Our Country's Founding: United States v. Auernheimer and the Sixth Amendment Right to Be Tried in the District in Which the Alleged Crime was Committed, 6 U. Denv. Crim. L. Rev. 37 (2016) This Article is brought to you for free and open access by the University of Denver Sturm College of Law at Digital Commons @ DU. It has been accepted for inclusion in University of Denver Criminal Law Review by an authorized editor of Digital Commons @ DU. For more information, please contact [email protected],dig- [email protected]. Mogin: Fundamental Since Our Country's Founding: United States v. Auernh 2016 "FUNDAMENTAL SINCE OUR COUNTRY'S FOUNDING" 37 "FUNDAMENTAL SINCE OUR COUNTRY'S FOUNDING": UNITED STATES V. AUERNHEIMER AND THE SIXTH AMENDMENT RIGHT TO BE TRIED IN THE DISTRICT IN WHICH THE ALLEGED CRIME WAS COMMITTED PaulMogin* * Paul Mogin is a partner at Williams & Connolly LLP in Washington, D.C and a graduate of Harvard Law School. A member of the American Law Institute and the National Association of Criminal Defense Lawyers, he argued and won Cleveland v. United States, 531 U.S. 12 (2000), in which the Supreme Court held that the federal mail fraud statute does not extend to an allegedly fraudulent filing seeking a state license.
    [Show full text]
  • Bakalářská Práce 2013
    Masarykova univerzita Filozofická fakulta Ústav české literatury a knihovnictví Kabinet informa čních studií a knihovnictví Bakalá řská diplomová práce 2013 Alena Brožová Masarykova univerzita Filozofická fakulta Kabinet informa čních studií a knihovnictví Informa ční studia a knihovnictví Alena Brožová AntiSec: hacktivistická kampa ň za svobodu na internetu Bakalá řská diplomová práce Vedoucí práce: PhDr. Pavla Ková řová 2013 Prohlašuji, že jsem diplomovou práci vypracovala samostatn ě s využitím uvedených pramen ů a literatury. …………………………………………….. Podpis autora práce Zde bych cht ěla pod ěkovat vedoucí práce PhDr. Pavle Ková řové za pomoc a cenné rady v pr ůběhu tvorby bakalá řské diplomové práce. Bibliografický záznam BROŽOVÁ, Alena. AntiSec: hacktivistická kampa ň za svobodu na internetu . Brno: Masarykova univerzita, Filozofická fakulta, Ústav české literatury a knihovnictví, Kabinet informa čních studií a knihovnictví, 2013, 59 s. Vedoucí bakalá řské práce PhDr. Pavla Ková řová. Anotace Bakalá řská diplomová práce „AntiSec: hacktivistická kampa ň za svobodu na internetu“ se zabývá hackerskými útoky v rámci operace AntiSec, které byly uskute čněny pod záštitou propagace svobodného internetu, svobody informací a svobody projevu. Práce se zabývá etickou oprávn ěností provedení útok ů v souvislosti s pravidly definovaných etických teorií a kodex ů. Pro toto hodnocení jsou využity principy dimenzionální analýzy. Výsledkem práce je souhrn informací o prob ěhnuté operaci s důrazem na eti čnost provedených útok ů. Annotation Bachelor thesis „AntiSec: hacktivism campaign for freedom on the internet“ deals with hacker attacks in Operation AntiSec which were made under the auspices of promoting free internet, freedom of information and freedom of expression. The work deals with the ethical legitimacy of carrying out attacks in relation to the rules of defined ethical theories and codes.
    [Show full text]
  • Commander Cialis
    E­Paper | Today's Paper | SmartInvestor.in | B2B Connect | Apps | BS Products Sign in | Register Thursday, January 15, 2015 | 06:40 PM IST News Stock Quote Authors Advanced Search Home Markets Companies Opinion Politics Technology Specials Personal Finance Portfolio My Page Overview News Features Gadgets & Gizmos People Personal Technology Technology » Columns » Columns Emerging global cyberlaw trends in 2014 2014 was the year when dark web started emerging, primarily due to the iCloud hacking of celebrities' pictures Pavan Duggal January 5, 2015 Last Updated at 13:37 IST Add to My Page Related News Careless and online Keeping it safe Should you worry about the Gmail hack? Now, Ankit Fadia plans to pen a fiction novel Is India prepared to tackle a Sony like cyber attack? Globally, the year 2014 was a year that was dedicated to cybercrimes and hacking. In fact, cybercrime as a phenomenon loomed large and predominant on the firmament of cyberspace landscape. Looking at the predominant events that happened in 2014 across the world, one gets an intrinsic feeling that the year 2014 was a year to remind the world that cyber criminal activities and breaches of cybercrime are going to be an integral part of our day­to­day lives. Seen from another perspective, the predominant existing landscape also demonstrates an ongoing struggle between the digital haves and the digital have­nots. The worlds saw one of the biggest hacking attacks in the form of Sony hacking. In the said case, hackers reportedly infiltrated the computer network of Sony Pictures Entertainment, a major Hollywood movie studio.
    [Show full text]
  • Paradise Lost , Book III, Line 18
    _Paradise Lost_, book III, line 18 %%%%%%%%%%%%%%%%%%%%%%%% ++++++++++Hacker's Encyclopedia++++++++ ===========by Logik Bomb (FOA)======== <http://www.xmission.com/~ryder/hack.html> ---------------(1997- Revised Second Edition)-------- ##################V2.5################## %%%%%%%%%%%%%%%%%%%%%%%% "[W]atch where you go once you have entered here, and to whom you turn! Do not be misled by that wide and easy passage!" And my Guide [said] to him: "That is not your concern; it is his fate to enter every door. This has been willed where what is willed must be, and is not yours to question. Say no more." -Dante Alighieri _The Inferno_, 1321 Translated by John Ciardi Acknowledgments ---------------------------- Dedicated to all those who disseminate information, forbidden or otherwise. Also, I should note that a few of these entries are taken from "A Complete List of Hacker Slang and Other Things," Version 1C, by Casual, Bloodwing and Crusader; this doc started out as an unofficial update. However, I've updated, altered, expanded, re-written and otherwise torn apart the original document, so I'd be surprised if you could find any vestiges of the original file left. I think the list is very informative; it came out in 1990, though, which makes it somewhat outdated. I also got a lot of information from the works listed in my bibliography, (it's at the end, after all the quotes) as well as many miscellaneous back issues of such e-zines as _Cheap Truth _, _40Hex_, the _LOD/H Technical Journals_ and _Phrack Magazine_; and print magazines such as _Internet Underground_, _Macworld_, _Mondo 2000_, _Newsweek_, _2600: The Hacker Quarterly_, _U.S. News & World Report_, _Time_, and _Wired_; in addition to various people I've consulted.
    [Show full text]
  • Geneva Information Security Day
    Geneva Information Security Day 17 September 2013 ©2011 High-Tech Bridge SA – www.htbridge.ch # whoami Frédéric BOURLA Chief Security Specialist Head of Ethical Hacking & Computer Forensics Departments High-Tech Bridge SA ~13 years experience in Information Technologies GXPN, LPT, CISSP, CCSE, CCSA, ECSA, CEH, eCPPT GREM, CHFI RHCE, RHCT, MCP [[email protected]] ©2011 High-Tech Bridge SA – www.htbridge.ch # readelf prez Slides in English. Talk in French. 3 rounds of 20’ [not including Q&A] focused on the offensive angle. No need to take notes, the whole slides and demos will be published on High-Tech Bridge website. Given the very short time and the heterogeneous attendees, slides will not dive to far in the technique. Nevertheless, I will also publish an additional low level and step by step guide for all of you who may be interested by the technical part of those hacking principles. ©2011 High-Tech Bridge SA – www.htbridge.ch # readelf prez The first two parts are server-side oriented, whereas the third one focuses on client-side attacks. If you missed previous conferences, you can learn more on server-side attacks here: https://www.htbridge.com/publications/frontal_attacks_fro m_basic_compromise_to_advanced_persistent_threat.ht ml And here are the slides which introduced client-side attacks: https://www.htbridge.com/publications/client_side_threat s_anatomy_of_reverse_trojan_attacks.html ©2011 High-Tech Bridge SA – www.htbridge.ch Table of contents 0x00 - About me 0x01 - About this conference 0x02 - Round 1: Web Servers vs. SQL Injections 0x03 - Round 2: Web Servers vs. Blind SQL Injections 0x04 - Round 3: Web Users vs. Cross-Site Scripting 0x05 - Conclusion ©2011 High-Tech Bridge SA – www.htbridge.ch SQL Injection On 5th February 2011, the security firm HBGary was compromised by LulzSec using a SQL Injection in their CMS-driven website.
    [Show full text]
  • Tensões Em Rede: Os Limites E Possibilidades Da Cidadania Na Internet Universidade Metodista De São Paulo
    Tensões em rede: os limiTes e possibilidades da cidadania na inTerneT Universidade Metodista de São Paulo Conselho Diretor Paulo Roberto Lima Bruhn (presidente), Nelson Custódio Fer (vice-presidente), Osvaldo Elias de Almeida (secretário) Titulares: Aires Ademir Leal Clavel, Augusto Campos de Rezende, Aureo Lidio Moreira Ribeiro, Carlos Alberto Ribeiro Simões Junior, Kátia de Mello Santos, Marcos Vinícius Sptizer, Oscar Francisco Alves Suplentes: Regina Magna Araujo, Valdecir Barreros Reitor: Marcio de Moraes Pró-Reitora de Graduação: Vera Lúcia Gouvêa Stivaletti Pró-Reitor de Pós-Graduação e Pesquisa: Fabio Botelho Josgrilberg Faculdade de Comunicação Diretor: Paulo Rogério Tarsitano Conselho de Política Editorial Marcio de Moraes (presidente), Almir Martins Vieira, Fulvio Cristofoli, Helmut Renders, Isaltino Marcelo Conceição, Mário Francisco Boratti, Peri Mesquida (repre­­­ sen­­ tante externo), Rodolfo Carlos Martino, Roseli Fischmann, Sônia Maria Ribeiro Jaconi Comissão de Publicações Almir Martins Vieira (presidente), Helmut Renders, José Marques de Melo, Marcelo Módolo, Maria Angélica Santini, Rafael Marcus Chiuzi, Sandra Duarte de Souza Editora executiva Léia Alves de Souza UMESP São Bernardo do Campo, 2012 Dados Internacionais de Catalogação na Publicação (CIP) (Biblioteca Central da Universidade Metodista de São Paulo) T259 Tensões em rede: os limites e possibilidades da cidadania na internet / organização de Sérgio Amadeu da Silveira, Fábio Botelho Josgrilberg. São Bernardo do Campo : Universidade Metodista de São Paulo, 2012.
    [Show full text]
  • Darpa Starts Sleuthing out Disloyal Troops
    UNCLASSIFIED (U) FBI Tampa Division CI Strategic Partnership Newsletter JANUARY 2012 (U) Administrative Note: This product reflects the views of the FBI- Tampa Division and has not been vetted by FBI Headquarters. (U) Handling notice: Although UNCLASSIFIED, this information is property of the FBI and may be distributed only to members of organizations receiving this bulletin, or to cleared defense contractors. Precautions should be taken to ensure this information is stored and/or destroyed in a manner that precludes unauthorized access. 10 JAN 2012 (U) The FBI Tampa Division Counterintelligence Strategic Partnership Newsletter provides a summary of previously reported US government press releases, publications, and news articles from wire services and news organizations relating to counterintelligence, cyber and terrorism threats. The information in this bulletin represents the views and opinions of the cited sources for each article, and the analyst comment is intended only to highlight items of interest to organizations in Florida. This bulletin is provided solely to inform our Domain partners of news items of interest, and does not represent FBI information. In the JANUARY 2012 Issue: Article Title Page NATIONAL SECURITY THREAT NEWS FROM GOVERNMENT AGENCIES: American Jihadist Terrorism: Combating a Complex Threat p. 2 Authorities Uncover Increasing Number of United States-Based Terror Plots p. 3 Chinese Counterfeit COTS Create Chaos For The DoD p. 4 DHS Releases Cyber Strategy Framework p. 6 COUNTERINTELLIGENCE/ECONOMIC ESPIONAGE THREAT ITEMS FROM THE PRESS: United States Homes In on China Spying p. 6 Opinion: China‟s Spies Are Catching Up p. 8 Canadian Politician‟s Chinese Crush Likely „Sexpionage,‟ Former Spies Say p.
    [Show full text]
  • Understanding and Analyzing Malicious Domain Take-Downs
    Cracking the Wall of Confinement: Understanding and Analyzing Malicious Domain Take-downs Eihal Alowaisheq1,2, Peng Wang1, Sumayah Alrwais2, Xiaojing Liao1, XiaoFeng Wang1, Tasneem Alowaisheq1,2, Xianghang Mi1, Siyuan Tang1, and Baojun Liu3 1Indiana University, Bloomington. fealowais, pw7, xliao, xw7, talowais, xm, [email protected] 2King Saud University, Riyadh, Saudi Arabia. [email protected] 3Tsinghua University, [email protected] Abstract—Take-down operations aim to disrupt cybercrime “clean”, i.e., no longer involved in any malicious activities. involving malicious domains. In the past decade, many successful Challenges in understanding domain take-downs. Although take-down operations have been reported, including those against the Conficker worm, and most recently, against VPNFilter. domain seizures are addressed in ICANN guidelines [55] Although it plays an important role in fighting cybercrime, the and in other public articles [14, 31, 38], there is a lack of domain take-down procedure is still surprisingly opaque. There prominent and comprehensive understanding of the process. seems to be no in-depth understanding about how the take-down In-depth exploration is of critical importance for combating operation works and whether there is due diligence to ensure its cybercrime but is by no means trivial. The domain take-down security and reliability. process is rather opaque and quite complicated. In particular, In this paper, we report the first systematic study on domain it involves several steps (complaint submission, take-down takedown. Our study was made possible via a large collection execution, and release, see SectionII). It also involves multiple of data, including various sinkhole feeds and blacklists, passive parties (authorities, registries, and registrars), and multiple DNS data spanning six years, and historical WHOIS informa- domain management elements (DNS, WHOIS, and registry tion.
    [Show full text]
  • Department of Homeland Security Daily Open Source Infrastructure
    Daily Open Source Infrastructure Report 15 May 2012 Top Stories • Three former General Electric Co. bankers were convicted May 11 of defrauding cities and the U.S. Internal Revenue Service in a bid-rigging scheme involving hundreds of millions of dollars in municipal bonds. – Bloomberg (See item 10) • Police arrested three high school students accused of setting a massive fire that destroyed part of a high school in Woodburn, Oregon. – Associated Press (See item 38) • DHS issued a bulletin May 10 warning about a previously undisclosed, critical vulnerability in Movicon 11, software used to manage machines used in the manufacturing, energy, and water sectors. – Threatpost (See item 52) • Sheriff’s detectives in Fresno County, California, arrested a man they believe is responsible for stealing miles of phone wire that caused phone service to cut out for many customers. – KSFN 30 Fresno (See item 54) • Authorities were trying to trace the source of a food-borne outbreak that sickened up to 150 people who attended a party and food fair at a Buddhist monastery in Carmel, New York. – Melville Newsday (See item 56) • Seven businesses in downtown Mariposa, California, burned to the ground the weekend of May 12 in a fire that caused about $1 million in structural damage. – Bellingham Herald (See item 60) • Firefighters battled several wildfires in Arizona, May 14, including one that was human- caused, more than 4.5 square miles in size, and forced residents from their homes. – Associated Press (See item 61) - 1 - Fast Jump Menu PRODUCTION INDUSTRIES
    [Show full text]
  • Trends in the Threat Landscape
    Trends in the Threat Landscape Thad Mann, CISM, CISSP, CeH, PMP Cybersecurity Black Belt [email protected] , 336-339-7206, October 2013 © 2013 IBM Corporation © 2013 IBM Corporation Several critical security business issues resonate consistently across senior management, and have become the top security focus issues Maximize Develop & Enable Protect the Manage end to retain key Leverage effective Corporate & security end security security security across security Brand image investment personnel the business units Ensure Leverage tools Create optimal The security Avoid a company is and environment to Build a investments breach that getting best technologies secure security DNA & need to could have bang for buck that enable company and culture that support the significant for security limited staff to build a creates business & IT financial and spend & effectively program to security requirements approaches brand impacts integration address acquire mobility & security talent across the with IT/Risk business units projects cloud © 2013 IBM Corporation Vulnerabilities increase with emergence of new business models, new technologies and Big Data Adopting new business models and Exponentially growing and interconnected embracing new technologies and data digital universe Bring your Employees, 30 billion RFID 1 own IT customers, 1 billion tags (products, contractors, workers will passports, outsourcers be remote buildings and or mobile animals) 1 billion mobile 1 trillion connected Mobility Internet users Social business objects (cars, 30
    [Show full text]
  • Two Men Charged in New Jersey with Hacking AT&T's Servers
    United States Attorney District of New Jersey FOR IMMEDIATE RELEASE CONTACT: Rebekah Carmichael January 18, 2011 Office of Public Affairs www.justice.gov/usao/nj (973) 645-2888 TWO MEN CHARGED IN NEW JERSEY WITH HACKING AT&T’S SERVERS Defendants Allegedly Stole E-mail Addresses and Personal Information Belonging to 120,000 Apple iPad 3G Subscribers NEWARK, N.J. – Two self-described Internet “trolls” were arrested today for allegedly hacking AT&T’s servers and stealing e-mail addresses and other personal information belonging to approximately 120,000 Apple iPad users who accessed the Internet via AT&T’s 3G network, United States Attorney Paul J. Fishman announced. Andrew Auernheimer, 25, of Fayetteville, Ark., and Daniel Spitler, 26, of San Francisco, Calif., were taken into custody this morning by special agents of the FBI – each charged with an alleged conspiracy to hack AT&T’s servers and for possession of personal subscriber information obtained from the servers. Auernheimer was arrested in Fayetteville while appearing in Arkansas state court on unrelated drug charges, and is expected to appear this afternoon before United States Magistrate Judge Erin L. Setser in Fayetteville federal court. Spitler surrendered to FBI agents in Newark and is expected to appear in Newark federal court before United States Magistrate Judge Claire C. Cecchi. According to the Complaint unsealed today: The iPad is a touch-screen tablet computer, developed and marketed by Apple Computers, Inc., which allows users to, among other things, access the Internet and send and receive electronic mail. Since the introduction of the iPad in January 2010, AT&T has provided iPad users with Internet connectivity via AT&T’s 3G wireless network.
    [Show full text]