Laws on Cyber Crimes

Cyber Security

Currently, the internet has become a significant infrastructure, which has brought new degrees of productivity, convenience, and effectiveness for the private and public firms. The many incidents of internet attacks reflect the vulnerability of the information systems, the severity of malicious programs and the offensive nature of technology. Similarly, either attackers can hide their identity, through disabling logging facilities or altering event logs, which makes them go undetected. On the other hand, some programs have the capability of disabling anti-virus or penetrate firewalls. This has made such security violations to have multi-dimensional impacts on individual internet users, businesses, time, human resources, loss of money, and psychological losses. This, on another hand, shows that the internet and the superior information infrastructure are not short of security violations (Wilson & Kiy, 2014).

Many scholars have given possible reasons the internet is vulnerable to these attacks. The reasons include failure to enforce policies, ignorance of new vulnerabilities and high expectations from technical skills. In addition, the scholars have suggested that these risks result to insecurity challenges for the information society. Although governments have made efforts to enhance security on their own computer, networks to prevent attackers from gaining access to computer systems (Li, 2006). In fact, most of the governments across the world have shown their concerns to the private sector, mainly due to them becoming targets of these attacks. Overall, cyber attacks have consequential influential impacts, mainly economic effects, because companies end up becoming targets of blackmail and loss of both financial information and money.

Cyber Security

Cyber security is a proportional concept. On one hand, it includes a comparison between security and attack methods. On the other hand, it entails a comparison between varying security methods. In the computer world, it is common knowledge that the attack methods develop faster when compared to the security techniques, regardless of the motives. In other terms, the hardware components, software, including other information system constituents are always at risk, which makes them exploitable. In respect to the comparison between the different security methods, the existence of different settings, use of different hardware, and software, and the use of different security methods, they all result to the difference in the levels of security. Therefore, this makes it clear that every organization will have a different security level (Li, 2006).

Owing to the different views on cyber security, including the approaches used to ensure that systems are safe; there are four renowned concepts of cyber security. They include a five-layer model of computing systems, a payload vs. protection paradigm, the nine Ds of cyber security and differentiation of the security threats into distinct categories. The significance of the concepts was illustrated by examining a disturbing cyber security threat, which was easy to study and almost predictable in respect to the concepts, but of which were previously unknown. In order to attain effective protection, it is important to develop a strategy, which should be central to the analysis of relevant and potential threats (Li, 2006).

Alternatively, it is essential to model the existing computing systems as comprised of various levels to make evaluation possible. Some of the renowned examples are the TCP/IP model, which has various differentiations in four, five, and seven layers, including the four-layer privilege ring model. The five-layer model comprises straightforward categories of observable attack vectors. Computing systems are perceived as a combination of two parts: (1) the functionality, which result to an asset value (payload), and (2) the measures, which the asset owner puts in place to manage the use (protection). Lastly, the nine Ds, which are the most utilized frameworks, can help in achieving a balance, mainly because they provide an easily remembered approach, which are central to the DoD's three tenets of cyber security (Wilson & Kiy, 2014).

Significant Threat to Data

Phishing

Phishing refers to ways used by cyber criminals to target organizations in order to access the company's private information. This approach uses emails, which most of the time contain malicious codes. Once one opens the email, then all our systems can become undermined. In this regard, cyber criminals have tried using this method, but most of the times we have emerged successful. Our company has installed enterprise-level email security software, which checks both incoming and outgoing email messages (PATC, 2010).

Poor Configuration Management

Although we are professionals in the area of cyber security, we have witnessed cases where some staff fails to follow the organization's configuration management policy. Owing to the vast use of networking, our company requires strong security, which restricts the computers that can connect to the company's network to make it safe from this attack. In addition, the firm has implemented a Network Access Control Solution, which helps in enforcing configuration policy needs (PATC, 2010).

Mobile Devices

Although this has not happened in the organization, it is a possible approach. This is due to the many workers who use smart phones, and their security is easily breached. Actually, this has complicated the approaches to security, considering that it is possible for the mobile phones to get lost, or cyber criminals can compromise those using malicious codes. Therefore, the firm has offered to encrypt the employee's mobile phones, and alternatively, the company is opting on implementing a strict policy, which will confine the utilization of smart phones in the work environments (PATC, 2010).

Insiders

We also appreciate the fact that it is possible to have employees who cyber criminals can compromise to provide authentication information, and other relevant information, which can make the organization vulnerable to attacks. Therefore, we have provided several employees with different accounts, or rather different levels of access to the firm's systems. In addition, all the computers have disabled "auto-run" and sensory alarms in an event an employee plugs in or out a removable media (PATC, 2010).

Cyber Criminals

As noted, cyber criminals target several types of enterprises, particularly when the firm or organization is dealing with information systems, and the internet. In this context, our company deals with information technology, and offers protection to cyber attacks. Therefore, our company qualifies as a high profile company, which can be a possible target from the cyber criminals. In addition, it is essential to know that we provide IT personnel for several government and private contracts. In fact, we encounter classified government information at various levels, in our course of work (Moore, 2005).

The documents we hold for the private sector, especially those with financial information, makes us possible targets from cyber criminals. Then again, our corporation has a valuable IP. Our security provision activities that have seen to success in the protection of data, networks and computer systems, have made some of the cyber criminals angry. For example, it is only a month ago when we received an infected mail, but due to our expertise, we were able to establish that the mail would cause harm to our systems (Moore, 2005).

Therefore, this is only proof that we are, and we will continue being targets as long as our business continues. Last year, we managed to secure the government's infrastructure from possible breach and later on, we received a warning message. The most significant achievement from our side is the security we provided to the electoral system from possible bugs, which were meant to manipulate the results. Therefore, our sophisticated activities make cyber criminals to get us out of business because we have served as obstruction to their anticipated "success."

Risk Management

Risk management is a discipline by itself and can occur in any type of organization. In this context, it is a process used by organizations to spot, examine, assess, and treat loss exposures, monitor risk manage and financial reserves to moderate the bad influences of loss. In fact, the concept of risk management was only used in business, or organizations dealing with production and such; however, with the advancement in technology the concept has been utilized and integrated in cyber security. It is because cyber attacks are possible threats to the success of an organization, mainly because it compromises the security of the organization (Kenneth & Jane, 2000).

Research has shown that security breaches have reached alarming rates, which have amounted to loss of money in billions. Therefore, this calls for risk management to ensure that it is possible to identify areas of vulnerabilities in a system and ensure it is safe. Organizations are now engaging in risk management to identify vulnerable assets, which has resulted to protection of crucial data. It is, however, impossible to prevent cyber attacks, but it is possible to know the emerging attacks, which help organizations to stay updates in case of such an attack (Kenneth & Jane, 2000).

Computer-Best Practices

Most of the organizations fail to purchase original recommended security software and end up relying on the software that security provide with the operating system. It is, however, essential to have security software, which will ensure that it can detect malicious programs, including the websites containing malicious codes. Alternatively, organizations should practice the principle of least privilege. This privilege restricts people from logging into systems that have administrator rights (Haller, 2010). Organizations should create accounts for their staff in relation to the privileges given and this will ensure that it is impossible to share information to cyber criminals. In addition, it is a good practice to change passwords more often (Indiana University, 2014). This can discourage attackers, particularly when they are actively trying to gain access into the system.

It is also important to use and maintain current software and updates. This includes the use of supported operating systems, which always provide updates, and software that will warn one when current software applications are out of date. When using the internet, it is not appropriate to click on random links, particularly those that one cannot verify. Conversely, it is important to check email attachments when they come from people not in your contact list. In organizations, particularly those that share computers, the employees should ensure they log out, because malicious employees can use the account to damage files, retrieve personal information, which can predispose the organization to possible attack (Indiana University, 2014).

Responding to Cyber-crime Incident

The company has experienced unsuccessful cyber crime attempts in the past. At the time, the company was only lucky because there were software applications, which blocked the malicious codes sent via email. However, it became evident that there was a necessity to have a panel of specialists who would respond in case of such incidents. Therefore, the team is responsible, and they can address the detection, restoration of normalness, follow-up evaluation, and recovery of lost files. Their first priority is the protection of client information (Kenneth & Jane, 2000). There is a plan, which the team follows, but as stated, the confidentiality of client information is the top priority. The team is also responsible of ensuring that the company's objectives and priorities are realized while minimizing negative effects. Later on, the organization regains normalness and investigations will follow. First, the team makes understands the degree of cyber attack, and proceeds to notify the relevant bodies, such as the law enforcement agency. Although cyber crime is complicated, and has crossed boundaries, the law enforcement agency has created offices to handle such crimes. In addition, proper communication within the organization is strategic, and the organization uses text messages, phones, and the fax. It avoids using emails, to avoid tipping off the intruders and possibly track them. Some of the evidence the company can use for investigation include log files, electronic or printed forms of emails, wire receipts, and online communications (Kenneth & Jane, 2000).

Protection of the Company

Cyber security is a global concern; mainly due to the many cases of security breaches that have influenced the growth of online business, and confidentiality of information. Therefore, the government has shown concern and provided regulations both at the local, state and the global arena to ensure businesses are not prone to vulnerability. Currently, there are several measures put in place to prevent cyber crime such as using firewalls, anti-virus software, encryption, and other prevention strategies. For example, the United States government has put effort to improve cyber security through the provision of regulations.

The federal government has provided laws and regulations for particular industries. For example, there is the HIPAA Act, which is in the healthcare industry, Gramm-Leach Bliley Act and the Homeland Security, which also includes the Federal Information Security Management Act (FISMA). On the other hand, American States have also improved cyber security by increasing the visibility of public companies with weak security. For example, California enacted an Act, which required companies to maintain personal information of the citizens, but in case of a security violation, they must disclose the details of the event (Paul, 2012).

Other states followed suit, and the regulation provides incentives for the companies to invest in cyber security in an attempt to protect loss of the company's reputation, including the possible economic loss. The government has also contributed through the provision of enough funds for research, and collaborating with the private industries to enforce regulations. Thus, it is evident that the government has also felt the adverse effects of cyber crimes, and this is why it is supportive to ensure cyber security is eliminated (Paul, 2012).

United States v. Ivanov

The case, United States v. Ivanov was a renowned case in America, where the subject was computer crimes carried out by internet users from foreign countries against American private sector. In the court, Aleksey Vladimirovich Ivanov, a Russian citizen was indicted for computer fraud, extortion, conspiracy, and possession of forced entry to devices. His argument in court was central to his physical location in Russia; therefore, he suggested that the court lacked subject-matter jurisdiction, and the court could not charge him using the United States Law. However, the court denied Ivanov's motion stating that his actions in Russia were felt in the United States, and, on the other hand, the statutes that the court used to charge him, put across by congress, were applicable extraterritorially. Later on, the court sentenced the accused, after he pleaded guilty, to 48 months, followed by three months of supervised release. This case is a typical example of the many cyber crimes cases happening in the world, and the protection of the firms by the law. In fact, some of these laws apply globally. In addition, the case represents the methods used by law enforcement agencies to catch up with cyber criminals. Overall, it is also clear that the court has accommodated cyber crime in its provision, and cyber criminals can now be prosecuted (Schell & Martin, 2004).