Cyber Crime – What’s trending for social media

This past week, I had to provide some opening remarks regarding what we, as law enforcement, can expect will trend in Internet threats in the coming years.  Social media as a threat vector is high on that list.  Criminals are certainly making very innovative use of social media to conduct their fraudulent activities.  Interestingly enough, what works for the criminals also works for law enforcement.

Natural disasters and horrific world events are like racing flags that signals the criminals to create fraudulent websites looking to prey on the emotions of good citizens separating them from their charitable dollars.  One article at CSO Online noted that more than 125 domain names were registered within the initial few hours after the Boston marathon bombings.  Conversely, as the tragedy unfolded, government and law enforcement used social media to disseminate information to the public and solicit their help. Social media sites are also used to gain information on criminals.  By scouring sites, using profiling techniques or covert infiltration, law enforcement officers are able to learn about criminals.

We are all too well aware of phishing attacks which attempts to steal our personal information and ultimately our money, usually sent via email.  Spear phishing, which targets specific data or identities, is on the rise.  This year, Facebook fell prey to what is known as a watering hole attack.  A very precise Facebook page was infected to successfully attract specific targets redirecting them to malware infected sites.  The traditional means of disseminating malware via email has graduated.
Our world is changing at a rapid rate.  Criminals will always leverage the weakest link.  And that unfortunately is the individual user.  Greed, ignorance or social engineering make them a prime target and easy prey. There are however a few things we can do to protect ourselves.  Be careful how much personal information we share.  Use strong passwords that are changed often.  Don’t use the same password across different platforms. Make sure that anti-viruses are used and up-to-date. Download only from trusted sites.  And finally, be sure to ‘friend’ only real friends.
security-password-100314299-primary.idge

 If you’ve used any of these passwords http://www.networkworld.com/article/2226175/microsoft-subnet/top-25-most-commonly-used-and-worst-passwords-of-2013.html, stop what you’re doing and change it now! 
https://www.europol.europa.eu/sites/default/files/ec3-icspa.jpg

Interested in what other threats are on the horizon, check out this white paper authored by Europol, Trend Micro and the International Cyber Security Alliance.  Have you heard of ‘human malware’?  No. Then read on.  https://www.europol.europa.eu/sites/default/files/publications/2020_white_paper.pdf

4 thoughts on “Cyber Crime – What’s trending for social media

  1. Thanks for reminding us all about what lurks about on the Internet. We all know the dangers yet we seem to always slip into a comfort zone where we begin to trust what we can’t see. We “accept” licenses we don’t read, we respond to emails sent by unknown authors, and we use weak passwords to protect our most valuable information. (Thanks for including the article on worst passwords — is it just me, or do others find it sort of hard to feel sorry for anyone who gets hacked using the 123456 password?)

    • John…you’re so right. Hard to find any compassion for those who use the obvious passwords. I think there is a lot of education out there on this topic and yet some still find it too hard to find a password system that works for them that is safer.

  2. I look at some of those passwords and think…really? Would someone actually use them! I suppose it the reality of protecting ones cyber activity isn’t important or perhaps if someone simply doesn’t understand the real threat it can be…then yes I see people using those passwords. Although the bigger issue is the cyber crime and its escalating rates. Something that will probably never cease. What could be some ways to slow it down?

    • Thanks for your comment William. Sorry for the tardiness in the reply. As I noted to John…the weak link will always be the end user. Social engineering has become an art form. So consumer education will always be the ticket to reducing cybercrime. Even though the message is constant about using strong passwords…heck, most sites now force you to do so…when given the chance, a lot of people chose passwords that they can remember. Worse, they use the same password for multiple sites. I was offline for a bit because I was in Singapore at Interpol’s new Global Cyber Innovation Centre. They are launching a new initiative called “Turn Back Crime”. Its aim is to educate the user. Check it out http://www.turnbackcrime.com

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.