A Brief History of Cybercrime and Cyberwarfare - The Technical and Social History of Software Engineering

Information Technology Reference

In-Depth Information

complexity tools, and a suite of other tools and methods proven to benefit quality

and security.

In 2009, the National Institute of Standards and Technology (NIST) ran a large

study on static analysis tools called SAMATE, which stands for Software Assur-

ance Metrics and Tools Evaluation. The results can be seen on the web at ht-

tp://samate.nist.gov/ . More than 100 tools were evaluated of various kinds, includ-

ing static analysis tools.

Static analysis tools with security features are a new and useful weapon for se-

curity defenders. These are rule-based applications that can easily be updated as

new threats occur. A vanilla static analysis tool right out of the box might find 90%

of known security flaws for common languages.

Of course, effectiveness against new zero-day problems can't be evaluated until

after the fact. If your software is in a language such as BLISS, CHILL, CORAL,

or MUMPS that is not supported by static analysis, then manual inspections would

be needed.

A number of nonprofit organizations, federal agencies, and also state and local

police departments now have information about cybercrime and resources to help

companies and individuals recover from cyberattacks.

Incidentally, the approximate average cost to recover from a personal identity

theft attack tops $10,000 in lost time, legal fees, and logistics for creating various

notarized and certified documents needed to restore creditworthiness, remove pos-

sible criminal charges filed erroneously, and restore personal integrity with law

enforcement groups.

A combination of federal agencies, including the Department of Justice and the

FBI, publishes annual reports on cybercrime in the United States. As of the end of

2012, only 2011 data are available. The group is called the Internet Crime Com-

plaint Center and the annual report is the Internet Crime Report.

In 2011, there were more than 400,000 cybercrime complaints, which was an

increase of 3.4% compared to 2010. Personal identity theft complaints were com-

ing at a rate of more than 26,000 per calendar month. The states with the highest

incidence of identity thefts included California, Florida, Texas, New York, and

Ohio. The average amount of money stolen before credit cards and accounts could

be canceled was $4,187 per victim.

Search WWH ::

Custom Search

Home