CrimProf Blog

Editor: Kevin Cole
Univ. of San Diego School of Law

Wednesday, May 7, 2008

Internet Crime Growing

From Criminal attacks against major Web sites have grown so common that Internet users have no reliable way to know which sites are safe to visit, no matter how well known those destinations are, security experts say.

News of the latest attack comes from Finjan, an Israeli security firm, which is reporting today that last month it found a large cache of information - including confidential medical records, financial records and business e-mails - sitting unprotected on a computer network server in Malaysia.

The data came from more than 40 major financial companies around the world, including the United States, and was stolen from computers belonging to doctors and home users conducting online banking and, in some cases, from machines inside corporate networks that the hackers managed to penetrate and infect. Finjan has notified the companies, which it declined to identify, as well as law enforcement agencies in several countries.

Included in the stolen information were medical diagnoses and insurance details, Social Security numbers, the recorded keyboard strokes of online shopping sessions and e-mails from businesses discussing an impending court case.

The largest banks "were not surprised we found this data," said Yuval Ben-Itzhak, Finjan's chief technology officer. "The second-tier banks were surprised and thanked us very much. Other businesses were also very appreciative - overall, we had a very positive response."

At any moment, thousands of sites are sitting on the Web hosting malicious software code designed to try to steal information, said Mary Landesman, a researcher at ScanSafe, a Web security provider in San Mateo.

The numbers are staggering - in April, Yahoo Inc. detected 7.8 billion links served up by search engines that led to compromised sites. In statistics collected by hackers, who were tracking an attack of their own that was discovered last year by Finjan, 500,000 computers had been infected.

Many of these attacks are invisible to computer users - there are no clues in the appearance of a Web site that you are being redirected to a compromised site.

Full article here. [Brooks Holland]

Criminal Law | Permalink

TrackBack URL for this entry:

Listed below are links to weblogs that reference Internet Crime Growing:


Post a comment