Crime and Justice International Magazine - Sam Houston State University

Worms are self-replicating computer programs that consume bandwidth to significantly slow or shut down Internet traffic. What’s most interesting about computer worms is they do not damage or modify computer systems, but rather act as barriers to slow down productivity. Businesses are the most common target for this type of attack which can result in the loss of revenue, production, and efficiency.

A computer virus is a malicious program that can replicate itself like a worm, but its host must be introduced to an uninfected computer. This transmission usually occurs through network systems or through the use of an infected CD, file, or USB storage device on an uninfected computer. Viruses are designed to affect a computer in several ways: some damage programs and delete files automatically, others take the form of pop-up ads (unwanted messages or images) and can cause computer shutdowns. Although some of these programs seem harmless to the user, like in the form of pop-up messages, they can actually take up large quantities of memory and seriously cripple a business, organization, or personal computer function. A recent example of this occurred in early June 2007 at the Grand Sierra hotel-casino in Reno, Nevada. A virus infected the hotel computer system, preventing hotel staff from creating any swipe card room keys. The fully booked 2,000 room hotel struggled with this infection and had to rely on security staff to manually allow guests into their rooms. Viruses are often used for ideological or political purposes to attack an enemy organization or entity.

A Trojan horse is a program that installs malicious software under the guise of an ordinary or harmless program. There are two types of Trojan horses: an unaltered computer program that contains a Trojan horse, and an altered computer program that appears to be a legitimate program but is actually a Trojan horse. These programs may also be given commands or circumstances in which to activate themselves from their dormant state. A “time bomb” is programmed to become effective on a certain date and time, and a “logic bomb” activates when a computer commands certain requirements. The newest version of a Trojan horse is called a “road apple” and is aimed at exploiting the curiosity of its potential victims. A Trojan horse is placed on a disc or USB storage device and left in a public place such as a mall, school, office building, or bathroom. An unsuspecting person retrieves the disc and puts into their computer either out of curiosity of the disc’s contents, or to return the disc to the appropriate owner; when the disc loads, the Trojan horse infects the new computer or network.

One of the newest strategies used by tech-savvy criminals is phishing, which uses seemingly legitimate company e-mails and websites to obtain personal and financial information from victims. The most intimidating issue about phishing is that victims voluntarily give their personal information to the website or in response to e-mails, which is simply copycatting the website layout and design of credible companies. The most common companies targeted by phishers are eBay and PayPal, although numerous banks and financial institutions are targeted. The scam is rather creative, and many individuals fall victim to it due to its apparent legitimacy: an individual receives an e-mail that appears to be from their bank or other company that holds personal information, and requests verification of the individual’s information. These emails and communications often have the official company logo and layout of the specific institution. The targeted individual believes it is a legitimate communication from their financial institution and provides their personal information. The phisher now has the personal info needed to either steal the identity of the customer or simply pilfer the funds available. To counter this type of attack, many institutions warn their customers that they will never ask for personal information through e-mail or other electronic communication; if the institution does need to verify certain information, they will provide a link through an official e-mail and require a log-in before requesting any information.

Computer crime is a burgeoning area of criminal activity and is advancing every day. In order for law enforcement to adequately respond to computer crime cases and reports, they must first understand how such acts are committed and what to look for. Law enforcement must continue to advance their own technology in order to investigate and prosecute the individuals responsible for computer crimes.