Presentation is loading. Please wait.

Presentation is loading. Please wait.

Strategic Management of Cybercrime Making Crime Pay A/Prof Paul A. Watters Research Director ICSL.

Published byAvis Hodge Modified over 8 years ago

Similar presentations

Presentation on theme: "Strategic Management of Cybercrime Making Crime Pay A/Prof Paul A. Watters Research Director ICSL."— Presentation transcript:

1 Strategic Management of Cybercrime Making Crime Pay A/Prof Paul A. Watters Research Director ICSL

2 Overview  Use business planning activities to interpret current cybercrime tactics within a strategic context  Understand the key drivers for management in cybercrime organisations  Predict how new threats to cybercrime might change or curtail future organisational planning

3 Business Planning  Cybercrime organisations are like any other business What cash return is sought by their investors?  ROI What are the (non-cash) critical success factors?  Risk management – threat of arrest, seizure of capital

4 Business Planning  How do we know they operate like a business?

5 Business Analysis Steps 1. What do we do? 2. To whom do we do it? 3. How do we do it? 4. How can we beat or avoid competition?

6 What do we do?  Goal is to maximise revenue through fraud Identify most vulnerable targets  The unemployed or desperate Identity schemes which maximise return but minimise risk  Low or nil cost to operate, minimal risk of detection or arrest Scheme proceeds laundered through legitimate businesses  Cheque cashing fraud, mules

7 To whom do we do it?  Identify asset-rich countries with sophisticated banking systems Must have easy means to “cash out” Attack launched from countries with no extradition treaty with target Local “protection” from government, police, legitimate business as cover etc Individual loss < minimum thresholds for investigation (no loss aggregation)

8 How do we do it? Example: Implied Obligation?

9 How do we do it?

10 How can we beat or avoid competition?  Principle of specialisation Writing kits or running attacks? Diversified industrial – very 1970’s  Strategic HR Hiring the best talent  Partnerships Strategic outsourcing where it makes sense  Trade organisations Sharing knowledge, intelligence and expertise freely

11 Strategy from tactical data?  Key challenge to measure the threat landscape Mapping of campaigns to identifiable groups Estimate of potential impact  Quantitative – dollars lost  Qualitative – harm to reputation, confidence in banking

12 Phishing Campaigns Australian Data Volume

13 Optimised threat management  Can we use data mining to optimise response to threats? Best allocation of resources to different types of threat  Existing kits = takedowns, resource management  New kits = forensic investigation, focused intelligence discovery/updates

14 An Example: New Threats

15 Time Volume of new attacks

16 No Simple Answers Only 5% of variation in new case volume over time accounted for by linear model!

17 Profiling – Know Your Enemy

18 Summary  Cybercriminals operate as businesses  Analysing cybercrime data helps us interpret the threat landscape Understanding of current activity levels Prediction of future types of activity Reveals the drivers and business planning choices undertaken by criminal groups  Simple techniques only achieve so much More sophisticated algorithms needed to improve predictability

Download ppt "Strategic Management of Cybercrime Making Crime Pay A/Prof Paul A. Watters Research Director ICSL."

Similar presentations

Using Intelligence led policing as a model to Prioritize Organized Crime Investigations – A Canadian Perspective.

Using Intelligence led policing as a model to Prioritize Organized Crime Investigations – A Canadian Perspective.
Presented by Jurek Sikorski Entrepreneur in Residence, LBS Formerly Marketing & Sales Director Thursday, 30 January 2014 Build a Successful Sales Strategy.

Presented by Jurek Sikorski Entrepreneur in Residence, LBS Formerly Marketing & Sales Director Thursday, 30 January 2014 Build a Successful Sales Strategy.
UNCLASSIFIED Cybercrime: The Australian Experience Australian Cybercrime Online Reporting Network (ACORN) Conference Assistant Commissioner Tim Morris.

UNCLASSIFIED Cybercrime: The Australian Experience Australian Cybercrime Online Reporting Network (ACORN) Conference Assistant Commissioner Tim Morris.
VAT Fraud & Control of Refunds and Credits A Strategic Approach to Tackling VAT Losses Andy Leggett HM Customs & Excise United Kingdom.

VAT Fraud & Control of Refunds and Credits A Strategic Approach to Tackling VAT Losses Andy Leggett HM Customs & Excise United Kingdom.
Manulife Financial Corporation operates as John Hancock in the United States, and Manulife in other parts of the world. Enterprise Risk Management in Life.

Manulife Financial Corporation operates as John Hancock in the United States, and Manulife in other parts of the world. Enterprise Risk Management in Life.
TOTAL POLICING Business Crime Strategy update London Business Improvement Districts meeting 3 June 2014 Rebecca Lawrence, Director of Strategy Mayor's.

TOTAL POLICING Business Crime Strategy update London Business Improvement Districts meeting 3 June 2014 Rebecca Lawrence, Director of Strategy Mayor's.
Www.smartvision-me.com IBM SPSS Solutions A SELECT INTERNATIONAL COMPANY.

IBM SPSS Solutions A SELECT INTERNATIONAL COMPANY.
Cyber Metrics in the DoD or How Do We Know What We Don’t Know? John S. Bay, Ph.D. Executive Director.

Cyber Metrics in the DoD or How Do We Know What We Don’t Know? John S. Bay, Ph.D. Executive Director.
© 2012 Jones et al: Strategic Managerial Accounting: Hospitality, Tourism & Events Applications 6thedition, Goodfellow Publishers Chapter 10 Event and.

© 2012 Jones et al: Strategic Managerial Accounting: Hospitality, Tourism & Events Applications 6thedition, Goodfellow Publishers Chapter 10 Event and.
Towards the Global Markets Merja Heikela Senior Consultant, Finpro UK-Benelux.

Towards the Global Markets Merja Heikela Senior Consultant, Finpro UK-Benelux.
PPA 573 – Emergency Management and Homeland Security Lecture 9b - Department of Homeland Security Strategic Plan.

PPA 573 – Emergency Management and Homeland Security Lecture 9b - Department of Homeland Security Strategic Plan.
Critical Infrastructure Protection (and Policy) H. Scott Matthews March 5, 2003.

Critical Infrastructure Protection (and Policy) H. Scott Matthews March 5, 2003.
Jeremy Mekdhansarn 10 May 2010 IEOR 190G Chapter Summary.

Jeremy Mekdhansarn 10 May 2010 IEOR 190G Chapter Summary.
Critical Infrastructure Protection (and Policy) H. Scott Matthews March 25, 2004.

Critical Infrastructure Protection (and Policy) H. Scott Matthews March 25, 2004.
Are Large Scale Data Breaches Inevitable? Douglas E. Salane Center for Cybercrime Studies John Jay College of Criminal Justice Cyber Infrastructure Protection.

Are Large Scale Data Breaches Inevitable? Douglas E. Salane Center for Cybercrime Studies John Jay College of Criminal Justice Cyber Infrastructure Protection.
Venture Capital Slide Show Presentation Suggested Format No more than 10 slides (not all slides No more than 10 slides (not all slides shown here will.

Venture Capital Slide Show Presentation Suggested Format No more than 10 slides (not all slides No more than 10 slides (not all slides shown here will.
The future shape of business is being redefined through outsourcing.

The future shape of business is being redefined through outsourcing.
Planning and Budgeting

Planning and Budgeting
The National Intelligence Model (NIM)

The National Intelligence Model (NIM)
Copyright © 2008 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin 1 Cost Management and Strategic Decision Making Evaluating.

Copyright © 2008 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin 1 Cost Management and Strategic Decision Making Evaluating.

Similar presentations

Ads by Google